Talos' latest blog demonstrates how exposing internal object models allows you to turn static analysis tools into queryable data servers, empowering AI agents to automate complex reverse-engineering tasks locally and securely: https://blog.talosintelligence.com/scripting-the-disassembler

This #Moscow tank cover has a huge memic potential - this one was published by “Wagner Group” (!) channel “Alex Parker returns” who had been mercilessly ridiculing Putin for months now.

EU folks: What are the tax etc. implications if I, as a non EU resident/citizen with no existing business connection to the EU, want to offer a paid training at a conference in Europe? Do I have to collect VAT or sales tax or something along those lines? Or if I'm not a European citizen/business or collecting less than X million EUR in the tax year am I tax-exempt?

Is this such a paperwork nightmare I shouldn't even attempt it unless an existing EU entity wants to handle all of this and just contract with me for my time?

Fuck AI?

Katie Moussouris absolutely nails it from start to end on the stupidity of the white house’s export control own-goal. It’s a short read so give it a click

Choice quote:

> The same holds for every capable AI model, including the foreign and open-weight systems the United States cannot reach with export controls, many of which will match Fable and Mythos capabilities within months

💯 and it’s already happening. There is existing research yielding similar results to those claimed by Mythos, but with open models

https://www.lutasecurity.com/post/the-fable-5-export-controls-harm-us-cyber-defense

@derpostillon cc @joern !

I'll do my part!

RE: https://mastodon.social/@simple_sabotage/116770427737800461

AFL++ 5.01c release! Bug fixes, faster persistent fuzzing, better MOpt mutator, new qemu binary-only alternative, etc. https://github.com/AFLplusplus/AFLplusplus/releases #afl #fuzzing

[RSS] Too Much Crypto explained

https://bfswa.substack.com/p/too-much-crypto-explained

[RSS] Zombie COTables: Resurrecting Freed Memory to Escape VirtualBox

https://blog.exodusintel.com/2026/06/15/zombie-cotables-resurrecting-freed-memory-to-escape-virtualbox/

@jonny @yadt Maybe I'm overly generous here, but Vendor Lock-In?

Thx for the thread btw, still epic.

I hear a lot of ppl rightfully complain about the looks of #Ghidra.

I recently started using themes (which are just text files with color codes, as it should be) and even though I'm not at all picky about these things OMG it's so much better now!

Great news: in the 5 years 2020-2024, know how many 20-24 year olds died of cervical cancer in England?

ZERO.

That's the first cohort of folks that age who were offered the HPV vaccine when they were 12 or 13.

Before the vaccine was used, on average about 20 people in that age range died of cervical cancer in a 5 year span.

We're looking forward to more dramatic results as that group enters their 30s & 40s.

https://www.bbc.com/news/articles/c621z28z138o

#HPV #Gardasil #vaccines

Politicians are freaking out about Mythos access, but it's not such a big deal.

Europe is leading the way with AISLE, a startup based out of Europe, using widely available and open-source-derived models, and can even run it air-gapped if needed. The defensive capability the whole world is suddenly afraid of losing was, fortunately, never locked inside Mythos in the first place.

https://aisle.com/blog/mythos-at-home-and-its-called-aisle

I think the secret reason that so much open source software is designed for CLI use is NOT just that we really like the console, but the deeper and much more true reason is that writing a GUI is a pain

"Any increase in European sovereignty will lead to a loss of business for US big tech, and they know this. They do not come to your event to help Europe lower their profits. They come to raise doubts or with dubious attempts to be “part of the solution”.

We also no longer invite the tobacco and alcohol companies to health events. These people too wanted to be part of the solution and look where it got us."

via @bert_hubert

https://eupolicy.social/@bert_hubert/116760961230164976

#DigitalSovereignty

@Ember we no longer need to test claude code, we just ask it how it is feeling

everyone knows that the best thing a piece of software can have is geometric growth in the amount of code it has.

edit: keep in mind this is the number of minified characters in the distribution, not lines of code, since it is not an open source project. usually more than one character per line, but also usually lines include comments and whitespace and like docs and tests and stuff when counted on a repository.

edit2: yes this is after unbundling the releases that have bun embedded, this is counting the js in the source only

I don't know where the misconception "you can't boot Windows using coreboot" came from, but I'm tired of correcting people... so here's the proof which should (hopefully) put that misconception to rest for once and for all

All you need are sane ACPI tables (which makes booting windows a great test, otherwise it'll throw a BSOD at you) and payload providing UEFI services (for consumer versions). That's literally it.

NEW macOS 26.5 🥫🍝 sauce! 🎉

xnu:
https://github.com/apple-oss-distributions/xnu/compare/xnu-12377.101.15...xnu-12377.121.6

dyld:
https://github.com/apple-oss-distributions/dyld/compare/dyld-1376.6...dyld-1378

Security:
https://github.com/apple-oss-distributions/Security/compare/Security-61901.101.4...Security-61901.120.67

Libc:
https://github.com/apple-oss-distributions/Libc/compare/Libc-1752.100.10...Libc-1752.120.2

- this post was generated by `ipsw` 🤖