Ivan Kwiatkowski

I guess I'm not getting rich this year either.

US recommends encrypted messaging as Chinese hackers linger in telecom networks US official: “Impossible for us to predict when we’ll have full eviction.”…

A friendly hello to politicians still considering weakening/banning encryption in messaging apps.

arstechnica.com/tech-policy/...

Ayant dirigé une petite maison d'édition, je suis loin d'être convaincu que ce soit le marché de l'occasion qui nuise le plus à l'économie du livre...
- Les tarifs des imprimeurs ont explosé
- Le marché est ultra-saturé
Et plus on va vers le tout-numérique, plus le débat de l'occasion est caduque.

I have cool features in store for Gepetto, but I need some free time to implement them! The work in that space definitely isn't done.
One corner I backed myself into is the fact that the plugin supports many different LLMs and providers that all have different capabilities and APIs. It slows me down

But AFP produces a lot of text, and it was becoming more and more time-consuming to read through everything (esp. since I don't care about minor/misc news).
So I created a new feed that pushes an AI-generated brief every 6 hours:

afpdigest.feeds.kwiatkowski.fr

Hope it's useful to someone!

I use RSS *a lot* to keep informed about a great many things. When a feed doesn't exist for a website I like, I create scrappers to generate one as this is the main way I consume information. That's what I did with AFP press releases (🇫🇷 content, sorry).

afp.feeds.kwiatkowski.fr

New blog post: "So you want to work in cybersecurity".

Every time I post research on X/Twitter, I get DMs asking how to get into cybersecurity. Instead of repeating myself ad nauseam, I wrote down all my thoughts on the subject here: blog.kwiatkowski.fr/cybersecurit...

Personal opinion obviously.

But wait, do you have many rules that need to be checked for compliance? I got you covered, there's also an API with a complete Python script provided.

The paint is still fresh and I have ideas for improvements, but I hope you'll find it useful!

#100DaysofYARA

I created a web service that allows you to verify on which yara versions your rule compiles. In the past, shipping rules to customers, I wondered if there were limitations but couldn't find out easily. Now I can.

yaravalidator.manalyzer.org

I have the pleasure to announce I'm joining @harfanglab@bird.makeup as Lead Cyber Threat Researcher starting tomorrow!
I'll be working on APTs from everywhere, reversing malware, writing FOSS tools and blog posts!

I get that, but bad behavior is almost never detected in the first place AFAIA. I would be happier if we spent our energy blocking mis-issued certs based on CAA rather than spending all our political capital ensuring a bad situation doesn't get worse.

What I could have bought: MacBook Pro 16.2 M2, 16GB RAM, 512 GB of storage.
What I got instead: server with 128 GB RAM, 244 TB of storage.

No wait, I couldn't have gotten the MacBook, it's more expensive.

I'm not denying the potential for abuse when governments add their CAs into browsers, but it feels like the world we live in already.
In any case, can't help but recall this old and epic "Honest Achmed's root certificate: bugzilla.mozilla.org/show_bug.cgi...

I'm seeing a lot of noise regarding EIDAS and the provision that would force browsers to accept government CAs. Isn't it missing the point? My browser seems to trust hundred of CAs already, surely a decent percentage of them are hacked or front-ends for intelligence agencies?

It's probably only a few categories (including politics), but good enough for me. At least I don't have to wait for news websites to rehash the releases and pretend they've done journalism anymore.

For a very long time, I've been frustrated that there was no way to get the direct feed from @afpfr.bsky.social
(French news agency). I've finally found a source I can scrap, so I published an RSS feed here that anyone can use freely: feeds.kwiatkowski.fr/afp.xml