I wish I could get more people to realize that every time you consume information from the news and ANY online source, and feel negative feelings like fear, anger, disgust, etc. and immediately think that people on the other side of politics are (insert nasty names here), you’re being manipulated! The media and social media influencers profit only when they can drive engagement by shock and emotional manipulation. Both sides of the political spectrum are being influenced by half truths and outright lies. It’s only going to get worse as AI makes it easier to manufacture “truth”, or uses skewed information and quotes it as fact. X’s Grok is a great example. After the Texas flood it incorrectly stated that government funding being cut was responsible for the loss of life, before people had to inform Grok of updated information that proved that the weather service was actually overmanned and sent out alerts and warnings of the flooding in advance. It’s amazing to me how many highly intelligent people are easily emotionally manipulated because they don’t question the information they consume. And you’re reading this right now thinking that it’s the other side, not you, that’s been manipulated. Yes, it’s you too! You have zero ability to resist being manipulated when it’s delivered via the dopamine drip in your hand. Open your eyes. Get in the habit of being suspicious any time you feel an emotional reaction to news and social media. The truth is really hard to find and you’ll have to stop using only sources that agree with your world view.

After reading far too many comments on Reddit, I’ve come to the conclusion that at least half of all users have some form of mental illness or defect. Example: report says jury found no scheme to defraud yet the thread is filled with calls to prosecute because it’s Elon.

Are your AI agents choking on massive HTTP responses when analyzing Burp Suite data via MCP? 🛑 BurpQL fixes this by providing compact, metadata-first search results and built-in recon commands to save your context window. Check out how to make Burp data actually usable for AI: cylentsec.com/blog/2026/03/1…

My book "Bash Shell Scripting for Pentesters" is currently on sale for $9.99 until January 20th: packtpub.com/en-us/product/b…

I'm starting to remember why I disliked sharing tools and methodology, and recording videos to share. There's always someone ready to shit on whatever you have to say.

If your new-year's goal is to learn reverse engineering and exploit development and publish CVE, check out pwn.college. It's an excellent learning resource. It has it all: video lessons, interactive lab exercises, CTF, and it's free!

I recently discovered the Yazi file manager and it’s freakin awesome. As amazing as it is on first discovery, dig a little deeper into the hotkeys and what they can do and you’ll be amazed. yazi-rs.github.io/features

Well that sucked. Yours truly is looking for work - reputable red teamer, pentester with 10 years experience. OSCP/GRTE certifications, also have experience with threat intelligence. Ex-JPMC/Optiv/TrustedSec

I was loving Frida-trace new web interface, but sadly the latest version of Frida isn't compatible with ElleKit which breaks support for SSL-Kill-Switch-3 and other packages if removed to fix Frida. Going back to Frida 16 and refactoring my scripts again.

I'm working on decking out my LLDB terminal while waiting for my customer to respond. LLEF is an LLDB plugin to make it more usable for low-level RE and VR. Similar to GEF, but for LLDB.

Yesterday I made the mistake of copying and pasting something sensitive into the wrong window on my Mac. I accidentally sent this to my wife in Messages while reverse engineering an iOS app: [0x0000d600]> :eval Thread.backtrace(this.context, Backtracer.ACCURATE).map(DebugSymbol.fromAddress).join('\\n') ERROR: error: cannot read property 'context' of undefined

“There’s a difference between interest and commitment. When you’re interested in something, you do it only when it’s convenient. When you’re committed to something, you accept no excuses, only results.” ~ Ken Blanchard

While working with my customers, I am once again thinking about how thorough documentation can make or break a company's information security program. Basically, you need to have every last detail documented down to each individual application component, who owns each system (broken down by who owns the applications), everything mapped out, etc. Gaps in your CMDB will break your security program.

My first hack came from investigating the URL at the bottom of a printed military form. What was your first hack?

Microsoft just forced me to change from a local to a Microsoft account, right as I have a remote connection into my mom's computer across the country. Now I'm locked out of her laptop until I can travel there and fix it in person. Since Microsoft has pissed me off, I'm converting every family member to Ubuntu or Mac. Microsoft will never be on another device in my family. We will not give up our data to Microsoft.

Here's how you know someone is highly intelligent✅

I tried Omarchy on an older spare laptop and was pleasantly surprised. It even worked well with my Apple Studio monitor. If macOS Tahoe doesn’t get the UI and memory leak issues resolved, I’ll switch to Omarchy once macOS Sequoia stops receiving updates or becomes unusable.

I just turned Claude Sonnet 4.5 in Warp.dev terminal loose on a fresh Obsidian vault directory and asked it to create a “Getting Things Done” system for me and what it created is freakin awesome! It includes a dashboard page linking all components, a Kanban board, tasks tracker, projects, and a daily journal. Well done!

I made a static website template that allows you to add blog posts in markdown format and then run a build script to deploy a static website to Cloudflare Pages. (for free hosting!) github.com/cylentsec/static-… It's what I used to build my new website at cylentsec.com

Finally Here’s a new recon guide that will help you find bugs. I’ve included some private scripts and techniques I use. if even one person lands a bounty from this, I’ll consider the effort worth it. infosecwriteups.com/my-5-min…

#2