How to Hack AI Agents and Applications
I often get asked how to hack AI applications. There hadn’t been a...
Evergreen essays or posts that were particularly well received.
I often get asked how to hack AI applications. There hadn’t been a...
Heads‑up: The concept of this post might seem trivial, but it can ...
This past December, it became feasible for any skilled hacker to scale up a hacking agent, spending hundreds in token cost to find thousands in bounties. I call this the “Bug Bounty Singularity”. This is the story of JD (xssdoctor) and I building a hackbot which found 126 bugs in the last 5 months.
I have been thinking about the downstream impacts of AI systems having strong cybersecurity capabilities.

Hey y’all,
A few weeks ago I wrote about how AI is going to impact bug bounty. That post was mostly predictions. This one is about what’s actually happening right now.