xy - Network
Here's the most basic model (performance depends on the model) casually finding CVE-2020-6523, an exploitable Chromium integer overflow:
https://mastodon.social/@xy/1130...Here's the most basic model (performance depends on the model) casually finding CVE-2020-6523, an exploitable Chromium integer overflow:
5.9.2024 20:21Here's the most basic model (performance depends on the model) casually finding CVE-2020-6523, an exploitable Chromium integer overflow:https://mastodon.social/@xy/1130...
The AUTOK automatic bug hunter is now available as a VSCode extension:Compatible with most C-like languages (JavaScript, C/C++, even...
https://mastodon.social/@xy/1130...The AUTOK automatic bug hunter is now available as a VSCode extension:
Compatible with most C-like languages (JavaScript, C/C++, even Solidity). Functions offline as well.
Download from: https://github.com/ortegaalfredo/autok-extension
Consider enabling it on that junior developer's computer:
5.9.2024 20:19The AUTOK automatic bug hunter is now available as a VSCode extension:Compatible with most C-like languages (JavaScript, C/C++, even...https://mastodon.social/@xy/1130...
So while it has found several bugs, I think the autopatcher is more interesting. Here we have the OpenBSD 7.5 kernel, booting with over...
https://mastodon.social/@xy/1128...So while it has found several bugs, I think the autopatcher is more interesting. Here we have the OpenBSD 7.5 kernel, booting with over 10,000 additional AI-generated patches and input checks within the IPv6 and IPv4 stacks. The cost to implement these improvements was ~ $6 USD.
31.7.2024 11:02So while it has found several bugs, I think the autopatcher is more interesting. Here we have the OpenBSD 7.5 kernel, booting with over...https://mastodon.social/@xy/1128...
I also make the the observation that it’s often easier to fix a vulnerability than to create an exploit for it, so this asymmetry between...
https://mastodon.social/@xy/1128...I also make the the observation that it’s often easier to fix a vulnerability than to create an exploit for it, so this asymmetry between defense and attack will cause offensive AI-generated exploits to almost never succeed, because less complex defensive AI will discover and patch them first.
Article pdf here:
31.7.2024 11:00I also make the the observation that it’s often easier to fix a vulnerability than to create an exploit for it, so this asymmetry between...https://mastodon.social/@xy/1128...
I'm happy to share my article 'AI-Powered Bug Hunting - Evolution and benchmarking' where I released several open-source tools,...
https://mastodon.social/@xy/1128...I'm happy to share my article 'AI-Powered Bug Hunting - Evolution and benchmarking' where I released several open-source tools, including a simple benchmark, a bug auto-finder (AutoKaker) and auto-patcher (1/3)
31.7.2024 10:58I'm happy to share my article 'AI-Powered Bug Hunting - Evolution and benchmarking' where I released several open-source tools,...https://mastodon.social/@xy/1128...
And no rust.
https://mastodon.social/@xy/1128...And no rust.
18.7.2024 18:04And no rust.https://mastodon.social/@xy/1128...
Become ungovernable
https://mastodon.social/@xy/1125...Become ungovernable
4.6.2024 22:31Become ungovernablehttps://mastodon.social/@xy/1125...
I actually love OpenBSD developers, they are the best. I do this to make them even better.OpenBSD's IPv6 Multicast Forwarding Cache...
https://mastodon.social/@xy/1121...I actually love OpenBSD developers, they are the best. I do this to make them even better.
OpenBSD's IPv6 Multicast Forwarding Cache Sysctl kernel buffer overflow:
https://github.com/ortegaalfredo/vulns-ai/blob/main/openbsd_mfc6_sysctl_overflow.txt
1.4.2024 23:19I actually love OpenBSD developers, they are the best. I do this to make them even better.OpenBSD's IPv6 Multicast Forwarding Cache...https://mastodon.social/@xy/1121...
