ai-security
Automating the AppSec with AI
Discover how defenders use AI agents to conquer the AppSec backlog. Learn about Endor Labs' new AURI Agents, open-source AI plugins for Claude, Cursor, and Codex.
William OGOU • • 8 min read
Latest Posts
View All
ai-security
Claude Fable 5 & Mythos: Security Breach or National Security Crisis?
Anthropic abruptly suspends Claude Fable 5 and Mythos 5 globally after a US export control directive. Is this a legitimate threat or government overreach?
ai-security
The New Mythos Era
Step into the new Mythos era. Explore how Claude Fable 5 and Mythos 5 collapse the N-day patch window and drown defenders in an asymmetric flood of bugs.
vulnerability
The HTTP/2 Bomb: How a Zero-Byte Window Melts NGINX, Apache, and Envoy
Protect your web servers from the HTTP/2 Bomb vulnerability. Learn how a chained HPACK and Slowloris attack consumes 32GB of RAM and how to mitigate it.
ai-security
The MITRE ATT&CK Gap: Anthropic LLM ATT&CK Navigator Insights
Master the new LLM ATT&CK Navigator insights. Learn how AI-enabled cyberattacks break the MITRE framework, obscure threat attribution, and why agentic scaffolding matters.
cybersecurity
The Definitive Post-Quantum Cryptography (PQC) Migration Checklist
Secure your infrastructure against quantum threats. Follow this comprehensive PQC migration checklist for TLS, OpenSSH, and OpenSSL to defeat HNDL attacks.
supply-chain-security
The Megalodon Breach: How TeamPCP Hijacked 5,500+ GitHub Repositories
Prevent the Megalodon supply chain attack. Learn how threat actors injected 5,718 malicious GitHub Actions workflows to steal OIDC tokens and cloud credentials.