I'm releasing my latest project today: https://t.co/h7fZ26HBiT Ever wonder if your custom seccomp profile is secure? Or is it actually less secure than RuntimeDefault? https://t.co/KZFn4IVeOd

Our speaker lineup for #BSidesPyongyang:

🎥 Missed the action at @cloudvillage_dc during @defcon ? We’ve got you covered! All Day 1 talks are now live on our YouTube channel 📺 Catch up on the insights, hacks, and cloud security deep dives you might’ve missed! 👉 Watch now: https://t.co/BdfgwntM8x #defcon33 #defcon

See you in Cincinnati?

$30K for a Prompt that breaks AI? 👀 Google just launched its new AI Vulnerability Reward Program - where for the first time, prompt injection is treated like a real security exploit. Fair reward or a bargain for a billion-dollar risk? 😮 They’re paying up to $30,000 for

https://t.co/5wrU0lmi8T fully agree with Kevin

Good to see folks at the @rocsecsummit for the short time I was there today. There's a good amount of work that goes into the TOOOL booth so thanks for those that donated money or time or interest.

Finally I was able to finish my script for Dark Web deanonimization!!! I let you the repo here for everyone to try it: https://t.co/tIgRKNmw5Q Thank you @zoomeye_team for your help! Those guys are amazing, and let me try a lot of different things with their services. And

One of my favorite moleskine swags that I ever snagged is finally getting put into rotation. Capsule8 is now part of $BIGCOMPANY but at the time it was doing some cool, low level, defensive stuff using straight Linux kernel primitives before eBPF was even around.

In 2023, Signal was the first mainstream messenger to enable post-quantum cryptography. We’re still ahead of the (elliptical) curve, implementing a new hybrid PQ ratchet ensuring Forward Secrecy & Post-Compromise Security even in a post-quantum world.

Next meeting 10/3. We will unvail the next gen SNARKINT platform. Features: * Monthly news * Anonymous live commenting * Designed with a UI for 3x 10' tall monitors * Written without ever looking at the source 🤞 https://t.co/55169ybOJw

Good CISO / Bad CISO The key differences between effective and ineffective CISOs, by @philvenables (former Google Cloud, Goldman CISO) and Michael Aiello.

Updated post from GreyNoise about Cisco ASA vuln https://t.co/Mab1M6hSxO

How Burp AI Works - Parsia 👾 Hakimian shows how by... proxying Burp through another Burp 😂 He walks through the Explore Issue, Explain This, and AI Recorded Login features, and Burp's agentic behavior.

I just submitted a talk currently named "Sandboxes, Seccomp, and Syscalls: Chasing Isolation in Kubernetes". IDK if it'll meet the vibe of DistrictCon but I'm going for it anyways. You should submit too!

When your remote security team finally has an on-site.

It's finally happened. Good riddance to a reasonable idea whose implementation caused more damage than good. https://t.co/plgWRXlNII

Added a new filtering system (thanks @antitree for the help and PR!) And added a new light mode. Link below and happy to hear suggestions for conferences to add to the list!

Definitely don't go here because I want tickets https://t.co/N9nRP7XKI5

I made a tier list of cybersecurity & hacking tools

3 new CFPs ending sept-oct! Added @qc_con (thanks @antitree!) and @CarolinaCon and @BsidesSLC