Tristan Kalos
@TristanKalos
Followers
518
Following
1K
Media
25
Statuses
413
Co-founder and CEO @ https://t.co/m0HwZH4ItB - Giving superpowers to product security engineers 🕸 · Hacker 👨💻 · memes dealer 🐱
Joined December 2017
Glad to announce this partnership between @escapetechHQ and @xolvio towards making the @graphql ecosystem more reliable and secure. See us at the @apollographql Summit!
4
0
3
Wow. this is a big banger.
The fact that most individual neurons are uninterpretable presents a serious roadblock to a mechanistic understanding of language models. We demonstrate a method for decomposing groups of neurons into interpretable features with the potential to move past that roadblock.
0
0
1
Et on y est @escapetechHQ @iCarossio 😌.
Start-up cybersécurité : six levées de fonds qui ont marqué 2023.avec @sekoia_io @OverSOC @escapetechHQ @astran_ @CyberVadis @FiligranHQ.
0
0
2
IDORs are everywhere in GraphQL. I searched the best ways to find and fix them. Here's what I found:.
escape.tech
IDOR are common security vulnerabilities. Discover IDOR best practices for GraphQL and real-life examples
0
0
2
Want to know how @thinkific achieved enterprise-grade GraphQL Security with Escape? ⚡️. Our latest User Story is out ➡️
escape.tech
Discover the challenges Thinkific faced and how they achieved enterprise-grade GraphQL security with Escape.
1
1
3
So cool to have seen y’all @graphqlconf.
Missed #GraphQLConf this year and still want to learn more about GraphQL vulnerabilities? 🤩 Watch the recording of @TristanKalos and @iCarossio’s presentation 👇.
0
0
1
They should have called us.
0
0
2
0
0
2
CSRF vs XSS explained. Cool article by @c3b5aw from @escapetechHQ security research team ⬇️.
escape.tech
XSS behaves like sneaky, harmful notes, while CSRF tricks websites into thinking it's you. Learn the difference.
0
0
1
Hey, I know this research 🤩.
🛠️ How to automate API Specifications for Continuous Security Testing. How to automatically generating an OpenAPI specification from source code, using Semgrep to extract routes and parameters and an LLM to infer the types of parameters. By @escapetechHQ.
0
0
1
RT @OsloBSides: What happens when you scan 1500+ GraphQL endpoints for security issues? During Swan Beaujard and Gautier Ben Aïm's research….
0
4
0
.@escapetechHQ is introducing its API Security Academy! Learn #GraphQL security with many interactive challenges. The cherry on the cake: it’s free and open-source 😌
0
2
5
Excited to speak at @thegraphqlconf with @icarossio this September. lots of good talks scheduled!
0
5
8
New #pentest and #bugbounty tool written in golang: Goctopus 🐙 - a fast, open source GraphQL endpoint discovery & fingerprinting tool 📡. Congrats @NoheHf for this very nice project!.
escape.tech
Discover a Golang-based tool developed at Escape for GraphQL endpoint discovery and fingerprinting.
0
4
9
RT @GraphQL: Interested in learning about #GraphQL Security and how to best protect your API?. At GraphQL Conf @iCarossio @TristanKalos fro….
0
17
0
RT @devseccon: 🚨 ICYMI: @iCarossio & @TristanKalos led a killer session at #DSC24! . Check out the recording at the 🔗 below their session o….
0
4
0