Thanks everyone for attending my talk. Hope you enjoyed it. Here are the slides:.

How Burp AI works internally. I touched this briefly in my BB village talk. We will learn how to proxy Burp and what the requests/responses look like. This allows us to write an extension to redirect Burp to our own AI instance.

What do you want to know?.

Thanks everyone for coming to my second talk. Here are all the slides for “The PowerPoint Glove.”.

دوست هموطنی که صحبت کردید با من. من یادم رفت نامتون رو بپرسم و ازتون تشکر کنم. ببخشید من قبل و بعدش حواسم پرت بود.

Was at the hotel. Saw a bunch of people wearing black t-shirts huddled around the black jack table. Told my friend “these are exploit dev people.” Turned out it was the “cold fusion” CTF team lmao.

I will be in Vegas 6-10th Aug at DEF CON. 1. "The Year of the Bounty Desktop: Bugs from Binaries" at the Bug bounty village, Friday 8th 3:30-4:00 PM (see below). 2. "The Power(Point) Glove" in Creator stages as part of the Hardware Hacking village, Saturday 9th 2:30-3:00 PM.

First worlders have discovered visa issues, lmao. People have been talking about this for decades.

Graphic design is my passion

RT @HaifeiLi: Oh, today is Patch Tuesday again. Microsoft has patched two of my Office (Word) bugs:. - Word RCE, -….

Calling my mother-in-law to wish her a happy birthday (I genuinely like my in-laws). Her: How did you remember my birthday?.My wife yelling from the background: Because it's on 4th of July. It's a holiday. Amazing, really!.

RT @BugBountyDEFCON: We’re excited to announce that Parsia Hakimian (@CryptoGangsta) will be speaking at the Bug Bounty Village at DEF CON….

I put together a hacky website to chat with DEF CON transcripts.

RT @POC_Crew: 🛠️ [POC2025] TRAINING. MacOS/iOS Kernel User Fuzzing Training.by Meysam Firouzi (@R00tkitSMM). 📅 Nov 10-12 (3 days).📍 Four Se….

I'm crying. Doing static analysis by running regex via an HTTP scanner. Semgrep is free and has a bajillion rules instead of whatever this is.

I don't have Twitter on my phone. Did I miss anything today?.

> Want to install Atomfall from Game Pass. > 68 GB. > OK, I will go make tea and come back to play. > Return to a downloaded game and press "Play.".> "We're gonna unpack your game, need to wait a few more minutes".> Amazing, really!.

EA Vancouver Mocap. It's the happiest place on Earth.

Do you why they give cool names to threat actors? E.g., Midnight Blizzard, Crimson Sandstorm. Because no company wants to say "we got hacked by threat actor Poopy Pants.".

How is this list sorted, lmao. Danish -> German -> Greek -> English !!! -> Spanish !!! -> Estonian and then Basque!

I had to optimize a #Kusto query because it was hitting the cluster limits. Here's what I learned with a public example.