unknownhad
- Karma
- 0
- Created
- ()
- Submissions
- 0
- Inclusive Syntax: outdated tech terms and clearer alternatives (inclusivesyntax.com)
- Score by Collisions, Patch by Panic (blog.himanshuanand.com)
- I read OpenSSL for fun and found a nonce leak (blog.himanshuanand.com)
- Kernel Kill Switch (lore.kernel.org)
- The 90 Day disclosure policy is dead (blog.himanshuanand.com)
- Show HN: MAIro AI Slop in Games (mairo.himanshuanand.workers.dev)
https://mairo.himanshuanand.workers.dev All levels are generated on the fly using AI. Feel free to share your review/feedback. #AIslop
- Always-on detections: eliminating the WAF "log versus block" trade-off (blog.cloudflare.com)
- Toxic combinations: when small signals add up to a security incident (blog.cloudflare.com)
-
I have been an HN reader for over 10 years. For the past 3 days I have not been receiving any HN emails in my inbox. IIRC this is only the second time this has happened since I started reading HN posts. I prefer emails…
- React2Shell and related RSC vulnerabilities threat brief (blog.cloudflare.com)
- I Found a Europa.eu Compromise (blog.himanshuanand.com)
- Look mom HR application, look mom no job – phishing using Zoom docs (blog.himanshuanand.com)
- Show HN: Typosquat Detective: Browser game to practice lookalike domains (typo.himanshuanand.com)
With the recent npm/Node.js supply-chain incident (phished maintainer, crypto-stealing code in 18 popular packages like chalk and debug) I thought it's a good moment to resurface a small side project: Typosquat…
- Why Relying on LLMs for Code Can Be a Security Nightmare (blog.himanshuanand.com)
- Prompt Injection Detection (promptinjection.himanshuanand.com)
-
Prompt injection is when a user tricks the model into ignoring prior instructions revealing system prompts, disabling safeguards or acting outside intended boundaries. I first saw it live during DEF CON (31) finals and…
- I found a 0day in libpng(11 years after it got patched) (blog.himanshuanand.com)
- Systems Engineering Manifesto (deuill.org)