So I read this paper over the weekend. Naively, its a resonably interesting piece of research around using a generative AI to use descriptions of CVEs from their responsible disclosures to exploit unpatched systems autonomously. Now read that sentence again — these people prompted Chat GPT4 with CVES which didn’t have fixes yet, and had it…
Tag: cyber
Cult of the Dead Cow
A very readable history of the early US hacking scene, including the roots of Def Con and Blackhat security conferences. The book is filled with a cast of characters many of whose names and exploits I recognize — although I’ve only met one or two in person. The book is definitely US-centric in it’s coverage…
Malware Analyst’s Cookbook and DVD
Another technical book, this time because my employer lets me buy random technical books as long as I pinky swear to read them and this one sounded interesting and got good reviews. First off, the book is a bit dated given its from 2011 — there are lots of references to Ubuntu 10.10 for example…
Cisco CyberOps Associate: Official Cert Guide
I don’t think I’ve really reviewed a technical book here before, but I read the thing so I guess I should. This book is the certification guide for a “Cisco CyberOps Associate” certification, which is what they now call the CCNA Security qualification. Its a relatively junior certification, qualifying you to be a level one…