Thanks, I'll take a look
Im curious if they have patterns or commone use case examples using their platform. I use N8N for some automation, but feel like we're all independently reinventing useful patterns and keeping them to ourselves.
Wow, this is incredible! We need governments or large orgs to do broad research tests like these.
youtube.com/shorts/GAdhl...
Exactly! LLMs will not lead to AGI.
www.instagram.com/reel/DMVO5nT...
Study referenced:
arxiv.org/abs/2507.06952
To be clear, I'm not saying this to name and shame. It's common enough, that I hope people will learn from real life examples. I also just really wish people will stop doing it!
Come on all, let's be smart about this.
Last year, I presented one of the top presentations on AI security at RSAC 2024.
In there I explicitly said "do not give your AI root access. It will be a confused deputy, I will add you to my list of examples".
Well, guess who got added to the list?
www.pomerium.com/blog/when-ai...
Think something was written with ChatGPT? Turns out the latest models have an unintentional watermark.
youtube.com/shorts/qt4r_...
I've always been a fan of building a yardstick and then seeing how you and your organization measure up against it. My question is what are the yardsticks that you use to measure how well a security team is doing?
So glad you take write ins.
Quick poll for a security friend. If you are a dev:
Do you know what threat modeling is?
Do you do it?
Why or why not?
If so what does that look like for you?
He must not have very many friends IRL, because I can't even think of a single one I'd replace with a chat bot.
Someone mentioned this in my comments the other day, but I didn't even think about the possibility of a deluge of bad/false AI generated bug reports being a problem in AppSec. and yet, here we are.
youtube.com/shorts/BInml...
I think it will primarily settle into being a copilot, a quick research and problem solving tool for technical issues.
What I do worry about is when a new technology comes out (like Rust), the AI won't have the millions of Stack Overflow posts to pull from.
Sending you good vibes!
This is a very interesting read on new and unique ways that AI agentic systems fail. What are your thoughts?
www.darkreading.com/vulnerabilit...
That's the ideal, but I'm worried about rent seeking behavior. Gatekeeping info and capital to charge at a premium. There's been a lot of talk about technofeudalism lately. There's even prominent figures in the administration that have stated they want to use AI and automation to replace labor.
About a month ago, I was asked to hop on a panel with some very talented people to discuss our thoughts on the state of AI security and red teaming. Check it out!
www.youtube.com/watch?v=HzqK...
Congrats! What did you do to monetize your skills for those 10 days? Bug bounty, speaking, social media, etc.?
AI isn't just LLMs. Here's all the places to go to learn how to hack more traditional AI/ML. Inspired by the AI Village challenges at Defcon.
www.youtube.com/watch?v=hnNZ...
If you want to learn how to hack AI, I have a video for that. Check it out!
www.youtube.com/watch?v=_4Q9...
No friends? No problem.
"When a metric becomes a target it ceases to be a useful metric."
arxiv.org/abs/2504.20879
This made me feel good! The perfect compliment from someone on my talks:
"You've made a difficult topic interesting, and explained it in a way that's memorable"
I'm curious. How would you define or describe the following?
* AI red teaming
* AI pentesting
* jailbreaks vs prompt injections
* AI agents
With all the semantic games in the AI+security space, let's settle on some common definitions and descriptions.
Going to #RSA? I’ll be speaking at Aegis of Tomorrow: An AI & Security Summit on Monday, April 28 from 3–5pm.
I’ll be sharing a framework for cutting through AI hype and prioritizing cybersecurity investments based on how attacker capabilities are actually evolving.
👉 Register here: lu.ma/9j1p8ixj
Holy shit, holy shit, holy shit.
You've heard of "Vibe Coding", now let me introduce you to "Vibe mathematics"!
Some think in the next 2 years, we'll have AGI. I think it'll discover astrology instead. Do you think it's a Cancer, or Sagitarios?
youtu.be/-wzOetb-D3w?...
