A new tool: Slice 🔪 With the help of build-free CodeQL and Tree-Sitter, Slice can help GPT-5 can reliably reproduce discovery of CVE-2025-37778: use-after-free vulnerability in the Linux kernel! https://t.co/J2na8iX4hv

It's interesting to note the listing of critical Taiwanese edge devices. Reports confirm nation-state actors are attacking these devices.

burp suite just joined the rank-maxxing train https://t.co/xvTVkAOeks

The @offby1security stream with @noperator is now available on YouTube below. It's definitely worth the view and provides actionable techniques for those interested in n-day and 0-day vulnerability research! https://t.co/g7M3hoBwDZ

in some initial testing, Slice can successfully use gpt-oss-120b (via openrouter) to find the same UAF, while 3X faster (2.5 min) and 56X cheaper ($0.06) than using GPT-5 :)

“One day the toys will all be put away, the house still and quiet.” These words—from a video my friend @isaacfrench_ made for his wife—hit me hard this morning. 📢Parents of young kids, take it from me—a recent empty nester: The Good Old Days don’t feel like it at the time.

starting in 45 min :)

mixed feelings

gonna be fun 🙂

thanks for the s/o @exploitsclub @_stigward 🤙

here's how I'm approaching a solution to the "growing backlog of bugs" problem: https://t.co/73NpVC1QSH. i.e., don't try to score them—just rank them directly against one another.

nice shoutout to @zemnmez just now RE: aardvark evals 👏

A must read if you do security stuff with LLMs! Kind of an eye opener to me

I need to hear the story behind the "excessive amount of dog poop that affected the well-being of the robots"

Great post by @noperator: built a sast tool that uses codeql (which can now scan c++ without compiling) and tree sitter, and triage with an LLM to find vulns with a low false positive rate

damn claude got hands

Utterly brilliant talk by Caleb. Love the framing of us all having a which problem.

updated with v important footnote 👀🚗🐟

AWS (Antifa Web Services) doing the #NoPings protest today