"NVD is deprioritizing, EUVD is nascent but may go the same way, and other CVE programs, such as MITRE, have had funding scares." "That era is officially over." - way to go @nistcybersecurity.bsky.social
www.aikido.dev/blog/nist-nv...
by @campuscodi.risky.biz news.risky.biz/risky-bullet...
Try the ChatGPT version: chatgpt.com/g/g-69817ef7...
Prefer Claude or other tools? Here we go: github.com/phretor/cybe...
Based on my "Cybersecurity Needs Supercommunicators" blog series: trustial.org/blog/become-...
#infosec #cybersecurity #publicspeaking #AI
I just made my myself a little less necessary this year.
I open-sourced an AI coaching skill that guides you (as I would do) during a 2-months speaker coaching session.
Works with ChatGPT, Claude, Gemini, or any LLM ā just load the prompt and start preparing. [1/2] ā¬ļø
from my @blackhatevents.bsky.social session -> trustial.org/blog/become-...
send me talks to dissect. I'll reverse the content design & delivery (not the content itself, that's yours truly).
#infosec #BlackHat #PayloadDelivered
Part 2 dropped. š§µ[1/2]
tl;dr: your slides are not your talk.
skip the template
skip the agenda (no spoilers)
skip the "about me" ego slide
š£ start from the LAST slide: your 280-char core message š±
then work backward.
Full framework + slides ...
Let's see how much this will cost...
Zotero just beats all bookmarking apps/services on customizability, storage, data control, price. $120/year for unlimited storage, when you save resources (e.g., websites, PDF), you get a local and remote self-contained snapshot on an actual file, and you can full-text search
Zotero just beats all bookmarking apps/services on customizability, storage, data control, price. $120/year for unlimited storage, when you save resources (e.g., websites, PDF), you get a local and remote self-contained snapshot on an actual file, and you can full-text search
Without knowing it existed, thatās what I used to iteratively get to that point.
I'm thinking of a good classification system. I prompted GPT 5.2 (w/ deep thinking) with the famous timeline by @xenokovah.bsky.social and a hint of some must-have labels, and it proposed an extension, which I like. Happy to hear any feedback.
Moved to claude-haiku-4-5-20251001 as my local GPU was suffering. Result isn't bad at all. Will have to tweak the prompt to get it to spit out:
- 1 TL;DR topic sentence
- 3 keywords
- 3 top topics
Let's see how qwen2.5:7b-instruct does with this prompt.
Let's cook something for 2026
Iāve had to fight with the ego of the author for the first 20% of the book. Iāve thought about dropping it a few times, but Iām glad I didnāt. The second half of the book is really inspiring.
Iāve had to fight with the ego of the author for the first 20% of the book. Iāve thought about dropping it a few times, but Iām glad I didnāt. The second half of the book is really inspiring.
Iāve been teaching my daughter how to solder and after weāre done with this last week, my wife reported that my daughter had a boost in her math scores.
The stolen calculator is now back among the other assembled soldering kits.
Dedicated to all the folks at the defcon.run club. Next year we should bring defcon.run at @nohatcon.bsky.social
strava.app.link/42XOKaJCyXb
Iām helping a friend going through this rough time while his father is passing away. Donate what you can. Forward if you canāt donate. Thank you.
gofund.me/a6caedb15
Looks like someone tore down a BostonDynamics Spot and published a 200 pages detailed report.
www.jiocloud.com/l/?u=jAMBhPd...
āDad, at school weāre not talking about actual bugs. Weāre talking more about, like, ā¦insects!ā
āDad, at school weāre not talking about actual bugs. Weāre talking more about, like, ā¦insects!ā š
Humbled to be part of @nohatcon.bsky.social and canāt wait to spend some time in motherland with Italian hackers and friends!
Hey, you guys, look at this. Hey, you guys ever heard of this guy?
Okay it says, "Chester Copperpot: Missing while in pursuit of local legend. Reclusive scavenger claims, 'I have the key to One-eyed Willy'."
Whoa, do you guys realize what we could do?
Have a security talk you think could hit harder?
Drop the link and Iāll dissect the delivery, not the content.
(Assuming itās already conference-grade š)
#Cybersecurity #BlackHat #infosec #PublicSpeaking #Trustial #PayloadDelivered
You can drop the best 0-day or present a novel attack vectorā¦
But if the audience doesnāt get it, it didnāt land.
A good talk isnāt just clearāitās designed.
ā To make people care.
ā To move decisions.
ā To be remembered.
Cybersecurity doesnāt just need brilliant minds.
It needs supercommunicatorsāpeople who can turn complex ideas into clarity, urgency, and action.
Hereās what I tell the speakers I coach for Black Hat š§µ
trustial.org/blog/cyberse...
Today weāre studying variables with Python. Using containers to hold paper notes with values scribbled on them. Ideally operands should be of a different color, but I ran out of post-its šāāļø
Highly recommending āPython for Kidsā by Jason Briggs.
nostarch.com/python-kids-...
