#streetart #budapest (took this from inside a cab, sry for the dirt)

Copilot does a much better job, but it also outputs irrelevant stuff.

I also miss FastGPT-style source referencing. In case of FastGPT the relatively low number of references (/sentence) may be a good indicator of answer quality.

Experimenting with #FastGPT #LLM to help me find the right API's to use in my #Ghidra script. While the answer puts me in the right direction, it includes misinformation and code that won't compile (solution in alt text).

I did my valet test[1] with Kagi FastGPT[2]:

[1] https://infosec.place/notice/Afoi8srZt4dTj330BU
[2] https://infosec.place/notice/AgHdA5c1DzzAxVPCXA

@jordinn

Wow, I didn't know this cash-for-data scheme was actually implemented, but apparently it was, by FB itself :O

https://techcrunch.com/2019/01/29/facebook-project-atlas/

/cc @stf

@simontsui The Black Hat way

#BurpSuite #UX

To little surprise, Copilot just failed my valet test:

@whitequark

"China’s largest #antivirus firm, Qihoo360, is an investor of offensive capabilities firms and may be selling PII of individual antivirus customers to an offensive company it funds that does intelligence work for government clients."

https://margin.re/2024/02/same-same-but-different/

This is a file chooser dialog in #LibreOffice in 2024.

Can you tell how you are supposed to go the parent directory?

Follow up question: who and why thought this is a reasonable design?

#UX

@hajovonta

@kevinrothrock

@FuzzyAleks Even WinDbg :,(

Is it me or every application icon is fucking cornflower blue now? (e.g. Burp, Chromium, VSCode)

#streetart #budapest

@Eggfreckles that headstrap ...

#TGIF game: Name your favorite useless infoleaks commonly present in #pentest reports!

I'll start:

- Internal IP leak (esp. on intranet services)
- HTTP Server header exposes target runs Apache 2.6/IIS8/...

#SpamBug #SPUG

#reverseengineering

(/by pupOnSecurity@X)