Sign up to save your podcasts
Or
Share Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351
Software has forever had flaws and humans have forever been finding and fixing them. With LLMs generating code, appsec has also been trying to determine how well LLMs can find flaws. Nico Waisman talks about XBOW's LLM-based pentesting, how it climbed a bug bounty leaderboard, how it uses feedback loops for better pentests, and how they handle (and even welcome!) hallucinations.
In the news, using LLMs to find flaws, directory traversal in an MCP, another resource for learning cloud and AI security, spreadsheets and appsec, and more!
Show Notes: https://securityweekly.com/asw-351
View all episodes
By Security Weekly Productions
4.7
3535 ratings
Software has forever had flaws and humans have forever been finding and fixing them. With LLMs generating code, appsec has also been trying to determine how well LLMs can find flaws. Nico Waisman talks about XBOW's LLM-based pentesting, how it climbed a bug bounty leaderboard, how it uses feedback loops for better pentests, and how they handle (and even welcome!) hallucinations.
In the news, using LLMs to find flaws, directory traversal in an MCP, another resource for learning cloud and AI security, spreadsheets and appsec, and more!
Show Notes: https://securityweekly.com/asw-351
More shows like Security Weekly Podcast Network (Video)
View all
Security Now (Audio)
2,005 Listeners
RunAs Radio
83 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
649 Listeners
Network Break
101 Listeners
CyberWire Daily
1,035 Listeners
Security Weekly News (Audio)
33 Listeners
The Matt Walsh Show
28,528 Listeners
CISO Series Podcast
191 Listeners
Cybersecurity Headlines
138 Listeners
Morning Wire
26,673 Listeners