What is Hackers' Pub?

1. 쿠키런 오븐브레이크 일단 제일 밉고 논란있는 장르부터 청산하고 들어가보도록 하죠.. 워낙에 파생작이 많은 ip인데다 제가 참 오래 몸 담고 있는 장르긴 해서.. 쿠키런 시리즈로만 4번까지 나올거 같음... 일단 가장 오래토록 붙잡고 있긴 해요... 이제 그냥 접고픈데 계정이 아까워서 못 접는 지경이 되어버린게 오래인 게임임.. 근데 논란도 그렇고 하는 운영 꼬라지도 그렇고 여러모로 접고싶은 게임입니다..

曇りの良さ
#misskey写真部

相変わらずサドバリアが優秀

It was interesting to read up on the AI assisted code review at https://www.lesswrong.com/posts/7aJwgbMEiKq5egQbd/ai-found-12-of-12-openssl-zero-days-while-curl-cancelled-its

For context: I'm personally responsible for at least 29 curl CVEs. Out of the recent 6 CVEs mentioned in the blog post I found two. This gives me some perspective, I think.

I do not utilise AI tools in my vulnerability research. I am also fiercely critical of harmful proliferation of AI. This is due to the unsustainable way it is currently pushed, and use of as marketing ploy and gimmick rather than producing measurable benefit to users. This leads to negative impacts on economy, education & learning, not to mention impacts to nature due to wasteful use of energy.

This doesn't mean I am against AI. I have written by own AI tooling (fully local RAG with support for arbitrary number of models running on local nodes, implemented in python). I found the usefulness of such tool to be limited at best. It is somewhat useful in mass analysis of large document bases, but the level of analysis is superficial at best. These AI models are after all just language models, and do not have any true understanding or intelligence.

And here is the gist of it: The current tools are not intelligent. Understanding this limitation is the key of successful deployment and utilisation of AI tools. The tools can be useful in certain tasks, but they do not replace true intelligence.

The AI tooling AISLE are developing certainly is one of the better uses of AI, and definitely surpasses all my personal dabbling around it. It is clear that the tool does find vulnerabilities. The key question is how much hallucinations and false positives it produces: If the tool generates thousands of FPs and the true findings are hidden among them this limits the value and usefulness of the tool (of course it doesn't entirely negate it, many tools produce false positives). In short: The quality of the findings is key, and poor signal-to-noise ratio is highly undesirable.

Either way, I think there is a future for AI tools and they definitely will be helpful in vulnerability research.

I personally will keep exercising my wetware for this work, however.

#cybersecurity #infosec #vulnerabilityresearch #thoughtoftheday

やばそう

Next NYC*BUG: February Social:
2026-02-04 @ 18:45 local (23:45 UTC) - Backroom of Brass Monkey 55 Little West 12th St
We are having a social meeting to catch up after the holidays. Will bring a few ideas for future meetings, stickers.

More info:
https://www.nycbug.org/

踊りみずもち​​#みずもち

なぜまだはたらいている

​​​​

人が埋まるくらい

​​​​

가로팔로 스파게티 맛잇는거에요? 세일하길래 사봤는데 뭔가... 겉의 질감이 다르게 생겻도.

A gorgeous Tūī (Prosthemadera novaeseelandiae) spotted at Glenorchy Lagoon Wildlife Reserve on 25 Dec 2025. It settled on this branch to preen, while giving out a series of 'unusual' calls. A common bird endemic to New Zealand.

On iNaturalist [ https://www.inaturalist.org/observations/333435758 ].

#iNaturalist #Nature #Photography #NewZealand #Birds #Aves

代理ちゃん無彩色多すぎる
だがそれがいい​​

오뭐야 나 777찍음

#고양이보여줄게

明日新幹線も下手したらとまるんじゃねえのってくらい降ってる

마음의 안정.

오뭐야 나 777찍음

まだもうちょい寝る準備しなくちゃだけど終わったら寝ますよ ​​ ​​

管理人のこのポーズ好き
#ArknightsEndfield
#エンドフィールド

Never doubt yourself, I'm proof that you can go beyond your wildest expectations and do the unthinkable.

You just need to remember that you can.

Dreams are blueprints. Waiting for you.
Don't forget that ❤️

너무 명쾌하게 답을 주네.

돈 없으면: 시간 쓰기
시간 없으면: 돈 쓰기
둘 다 없으면: 포기 또는 피봇

寝ますね​​

悪の組織ジャァァァックスの幹部、サンザイン

Next NYC*BUG: February Social:
2026-02-04 @ 18:45 local (23:45 UTC) - Backroom of Brass Monkey 55 Little West 12th St
We are having a social meeting to catch up after the holidays. Will bring a few ideas for future meetings, stickers.

More info:
https://www.nycbug.org/

​​

曇りの良さ
#misskey写真部

?

みら氏が災害レベルというくらいだから今年は相当やばいな。北海道も電車マトモに機能してないし

The always excellent @carolecadwalla.bsky.socialCarole Cadwalladr reveals that Palantir is

> "the 'cloud support' for our nuclear weapons system'.

You can't make this shit up.

https://www.thenerve.news/p/palantir-technologies-uk-government-contracts-size-nuclear-deterrent-atomic-peter-thiel-louis-mosley

?

Security updates for Wednesday

https://lwn.net/Articles/1056330/ #LWN

[blog] Le ciblage publicitaire est un ciblage tout court https://matoo.net/2026/01/28/le-ciblage-publicitaire-est-un-ciblage-tout-court/ via @sebsauvage et @ploum

あしたにむけてがんばって​​ます​​​​
​​​​

@dansup yap.. completly right!!! And thanks for all effords!!

作業したいけど眠いし寝ます...​​​​

Ba-Wü: CDU und Grüne wollen sich nicht verpflichten, keinen Wahlkampf auf Kosten von Menschen mit Migrationsgeschichte zu betreiben. Das Fairness-Abkommen des Flüchtlingsrates haben sie im Gegensatz zur Linkspartei und der SPD nicht unterschrieben. #Rassismus https://rdl.de/beitrag/cdu-und-gr-ne-wollen-sich-nicht-verpflichten-keinen-wahlkampf-auf-kosten-von-menschen-mit

​​
万博記念公園 平和のバラ園にて
#Misskey写真部 #春が恋しいので花の画像を貼る

32 People Died in ICE Custody in 2025, as #Minneapolis Killings Spark Outrage

“Of those who died in #ICE custody last year include Geraldo Lunas Campos, whose death in #Texas has been ruled a homicide.

Also Wael Tarabishi, who died of a rare genetic disease thirty days after his father, Wael’s primary caregiver, was detained by ICE after a routine check-in at an immigration facility in Dallas.”

https://people.com/deaths-ice-custody-last-year-as-fatal-shootings-spur-outrage-11890261

​​

The always excellent @carolecadwalla.bsky.socialCarole Cadwalladr reveals that Palantir is

> "the 'cloud support' for our nuclear weapons system'.

You can't make this shit up.

https://www.thenerve.news/p/palantir-technologies-uk-government-contracts-size-nuclear-deterrent-atomic-peter-thiel-louis-mosley

Ah, okay, I wouldn't ordinarily ask for this, but can I, uh, can I get a "re-skeet" on this?

https://bsky.app/profile/did:plc:lhck2qa73dovvfqdy7k3ffj6/post/3mdih2knfj22e

#fediverse #SocialMedia #bluesky

NEW: Our investigation for @thenerve_news reveals not only that Peter Thiel’s Palantir is completely enmeshed in our critical national infrastructure. It’s also the ‘cloud support’ for our nuclear weapons system 🤯 1/ www.thenerve.news/p/palantir-t...

うちの足だけおこたネコちゃん見ていきなよ​​

All over the world, politicians are being forced by their communities to address the evils of data centers

Resistance to data centers fuels flood of Georgia bills targeting the industry

Georgia legislators have proposed seven bills regulating data centers by eliminating tax breaks, prohibiting costs from being passed on to residential electricity customers, or temporarily barring their construction entirely.

https://capitol-beat.org/2026/01/resistance-to-data-centers-fuels-flood-of-georgia-bills-targeting-the-industry/

デカサイズレンズの次はデカ口径レンズ欲しくなってる 愚か…

Die KI in meinem Backofen heißt Thermostat, ungefähr seit 1859.

I don't keep a full-fidelity list in my mind of which Debian packages contain every executable because it's easier to relegate that info to outboard-brain tools instead.

For tools that I have locally installed, e.g. ls(1), `dpkg --search "$(which ls)"` (or `dpkg -S "$(which ls)"`) looks up which package owns the tool.

For packages not locally installed, visiting e.g. https://manpages.debian.org/ls#:~:text=Source%20file and then peeking at the "Source file:" page footer shows me the package name.