New blog post: Building a Pipeline for Agentic Malware Analysis

Agentic RE + malware analysis with custom skills, MCP tooling, and persistent case state to automate intial triage

Link: https://synthesis.to/2026/03/18/agentic_malware_analysis.html

Github: https://github.com/mrphrazer/agentic-malware-analysis

#malware #reverseengineering #ai #cybersecurity

@0xabad1dea This sounds pretty much like foreign language education in the post-Soviet block

The Most Organized Threat Actors Use Your ITSM (BMC FootPrints Pre-Auth Remote Code Execution Chains) - watchTowr Labs https://labs.watchtowr.com/thanks-itsms-threat-actors-have-never-been-so-organized-bmc-footprints-pre-auth-remote-code-execution-chains/

piracy!

@evan because apparently graffiti is a higher level crime than pedophelia, money laundering, or espionage

WE DON'T WANT TO KNOW BANKSY'S IDENTITY

STOP INVESTIGATING BANKSY FFS

INVESTIGATE LITERALLY EVERYTHING ELSE

GPU accelerated terminals became even more pointless now that output is emitted from slopmachines (also GPU accelerated!) emulating the speed of teletype terminals.

Btw. this is a great video:

https://www.youtube.com/watch?v=frMwsDTjmAs

Day 535. Once you have associated a custom route table to your #Azure Kubernetes Cluster, you are not allowed to change that route table. That seems to be a completely arbitrary limitation since you are allowed to change all custom routes, just not the name of the route table. And while they also state it in the docs, it doesn't get explained. Want to use a new route table for your cluster? Easy, deploy a new cluster.

[RSS] CVE-2025-59284: How reading a gnu manpage led to a Windows NetNTLM phishing exploit

https://sec-fault.com/blog/cve-2025-59284/

[RSS] KslDump -- Why bring your own knife when Defender already left one in the kitchen?

https://github.com/andreisss/KslDump

"I'm concerned about LLM code in #curl and would like to suggest a code ban"

https://github.com/curl/curl/discussions/20972

In case you missed it, new particle just dropped. The LHC has confirmed (and in ridiculous accuracy) the existence of a heavier version of the proton.
A proton is made of 3 quarks, up/up/down. This new particle is made of charm/charm/down, where the charm quark is basically the same as the up, just heavier.
So not groundbreaking like finding supersymmetric particles, but still cool. Further confirmation that the standard model of particle physics is reasonable.
https://home.cern/news/news/physics/lhcb-collaboration-discovers-new-proton-particle

YouTube autoplay switch now does nothing?

Vibe coding is going great at big G!

snap-confine + systemd-tmpfiles = root (CVE-2026-3888)

https://www.openwall.com/lists/oss-security/2026/03/17/8

Qualys just can't stop!

[RSS] Now You See mi: Now You're Pwned

https://labs.taszk.io/articles/post/nowyouseemi/

[RSS] From virtio-snd 0-Day to Hypervisor Escape: Exploiting QEMU with an Uncontrolled Heap Overflow

https://osec.io/blog/2026-03-17-virtio-snd-qemu-hypervisor-escape

yt comment:

> Remember: The dumbest person you know is being told 'you are absolutely right' by a LLM right now.

Hey Simon Gardner, James Pearson and Blake Morrison. That was not journalism, that was just Doxing. Shame on you. I hope you will never get a job in journalism again. And may your sleeves always get wet, when washing your hands.

#banksy

je suis #banksy!