Threat Post

Exploit Writing and Mitigation Going Hand in Hand

Researchers at Endgame shared how two exploit mitigations could go a long way toward wiping out a nasty class of vulnerabilities. More and more white hats who practice offensive security and exploit ...
Dark Reading

Can Anthropic Keep Its Exploit-Writing AI Out of the Wrong Hands?

Anthropic's Mythos model promises major innovations in vulnerability management and security red-teaming, but questions remain regarding how defenders can keep threat actors from taking full advantage ...
Threat Post

Charlie Miller on Mac OS X, Pwn2Own and Writing Exploits

The following is the full transcript of a live Threatpost chat with Charlie Miller, a vulnerability researcher at Independent Security Evaluators. During this session, Miller discussed his approach to ...
CSOonline

Gen AI is transforming vulnerability hunting for pen-testers and attackers alike

Large language models (LLMs) are proving to be valuable tools for discovering zero-days, bypassing detection, and writing exploit code, thereby lowering the barrier to entry for penetration testers — ...
ZDNet

MPack exploit kit creator speaks

SecurityFocus.com reporter Rob Lemos has a fascinating interview with one of the developers of MPack, the exploit kit used in thousands of drive-by malware attacks. In the interview, presented from ...
Computerworld

Experts publish ‘how to’ book for software exploits

A new book by leading security researchers on writing code to exploit security flaws in software, including Microsoft Corp.’s Windows operating system, has raised some eyebrows in the technical ...