zlacker

[return to "XBOW, an autonomous penetration tester, has reached the top spot on HackerOne"]
1. bgwalt+Ot[view] [source] 2025-06-24 18:42:18
>>summar+(OP)
"XBOW is an enterprise solution. If your company would like a demo, email us at info@xbow.com."

Like any "AI" article, this is an ad.

If you are willing to tolerate a high false positive rate, you can as well use Rational Purify or various analyzers.

◧◩
2. moyix+aw[view] [source] 2025-06-24 18:52:01
>>bgwalt+Ot
You should come to my upcoming BlackHat talk on how we did this while avoiding false positives :D

https://www.blackhat.com/us-25/briefings/schedule/#ai-agents...

◧◩◪
3. tptace+wz[view] [source] 2025-06-24 19:05:21
>>moyix+aw
You should publish the paper quietly here (I'm a Black Hat reviewer, FWIW) so people can see where you're coming from.

I know you've been on HN for awhile, and that you're doing interesting stuff; HN just has a really intense immune system against vendor-y stuff.

◧◩◪◨
4. moyix+SA[view] [source] 2025-06-24 19:12:19
>>tptace+wz
Yeah, it's been very strange being on the other side of that after 10 years in academia! But it's totally reasonable for people to be skeptical when there's a bunch of money sloshing around.

I'll see if I can get time to do a paper to accompany the BH talk. And hopefully the agent traces of individual vulns will also help.

◧◩◪◨⬒
5. tptace+dB[view] [source] 2025-06-24 19:13:51
>>moyix+SA
J'accuse! You were required to do a paper for BH anyways! :)
[go to top]