“Don’t say you are good at Vibe Coding. Say you are a… Smooth Sloperator”

@pinkflawd a less radical solution: https://shop.compiler-explorer.com/en-eur/products/x86-64-abi-mug

@mainframed767 outstanding move!

@doyensec nice ride, congrats!

RE: https://infosec.exchange/@decoderloop/115746825926307965

I'm happy to announce that I'll be teaching 2 Rust reverse engineering trainings in 2026!

1) Deconstructing Rust Binaries at @ringzer0 COUNTERMEASURE, March 23-26 2026, 16 hours, Remote: https://ringzer0.training/countermeasure-spring-2026-deconstructing-rust-binaries/

2) Deconstructing Rust Binaries at @NorthSec, May 11-13 2026, 24 hours, Onsite in Montréal, Canada and Remote: https://nsec.io/training/2026-deconstructing-rust-binaries/

No previous experience with reversing Rust binaries, or writing Rust code, is required, and we'll be using Binary Ninja in the course! (A Binary Ninja student license is provided!)

@adamshostack see, data is literally the new oil

[RSS] Can chatbots craft correct code?

https://blog.trailofbits.com/2025/12/19/can-chatbots-craft-correct-code/

"The difference between compilers and LLMs isn’t just about control or abstraction. It’s about semantic guarantees. And as I’ll argue, that difference has profound implications for the security and correctness of software."

the entire field of linguistics is an elaborate prank

#linguistics

The state of advanced research:

IBM's X-Force blog has a chatbot, but can't correctly render static images:

https://www.ibm.com/think/x-force/patch-tuesday-exploit-wednesday-pwning-windows-ancillary-function-driver-winsock

(could you kick some butt @chompie1337 ? )

Moin moin, this is #nakeddiefriday speaking! Only two remain until the end of 2025!

Today's image is of one Soviet design, К161ПР2 fabbed at Ukrainian PO Oktyabr, date code showing 1989. This decodes the 8421 code (aka BCD) to drive a segment display. It is made in metal-gate pMOS, and is powered with -27V! None of that 5V rubbish.

#electronics #reverseengineering #microscopy

make a photo realistic embroidered wall piece with the words "never expect two independent URL parsers to treat every URL identically"

okay, that failed

"again without repeating any words"

*ripping my eyes out*

Business idea: an LLM chat connected with OnlyFans, where you can see the server. When the LLM makes shit up, you can pay extra and watch as a person dressed in latex does unspeakable things to the machine until it breaks.

#bdsm

#CodeQL 2.23.7 and 2.23.8 add security queries for #Go and #Rust

https://github.blog/changelog/2025-12-18-codeql-2-23-7-and-2-23-8-add-security-queries-for-go-and-rust/

#FreeBSD-SA-25:12.rtsold Security Advisory

Remote code execution via ND6 Router Advertisements

https://www.freebsd.org/security/advisories/FreeBSD-SA-25:12.rtsold.asc

#PoC for CVE-2025-65945 (Improper Verification of Cryptographic Signature in node-jws)

https://github.com/jedisct1/CVE-2025-65945-poc

This is not working. The number of #hackerone report submissions for #curl in 2025 is going through the roof, while the quality is going through the floor.

And the year isn't over yet.

All of the recent paintings from my Jazz Rats series https://wagtails.art/jazz-rats-part-two/

@timb_machine as/400 forensics :O