Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)D

Diluvian

@ Diluvian @infosec.pub

Posts
7
Comments
3
Joined
6 mo. ago

  • Why won't this work?

    Jump

  • (?<!\d) -> Not sure why you're doing this.

    \d+\. -> Look for at one or more digits followed by a period. None of the sentences have numbers before the period, and if the previous section didn't exclude them, this would.

    \.\d+ -> look for a period followed immediately by one or more numbers. This should get most of the trailing 0's, but you'll miss the ones on their own newline and following a quotations mark.

    \.0\ -> If you only have a single character you'd like to remove, there's no harm in enumerating it.

  • From CVE Entries to Verifiable Exploits: An Automated Multi-Agent Framework for Reproducing CVEs

    Jump

  • This validates what researchers have been seeing in the wild -- ransomware attackers have been vibe-coding exploits based on feeding CVEs to an LLM. 51% delivering valid code and reproducing the attack seems a bit high. Even a system for generating exploit code that gets it right 5% of the time is alarming, as a good attacker only needs to get through once. The good defender needs to block it every single time.

    LLMs are making an already lopsided playing field even more skewed to red team.