bruh

This is the type of malware game hackers build to bypass kernel anti-cheat. The same techniques can be used by malware authors to evade EDRs. A UEFI bootkit that injects into Microsoft's own Hyper-V at ring -1 before the OS even loads (easier than building a custom hypervisor from scratch). Four phase bootloader. Hypervisor VM-exit interception. EPT page shadowing. MSR virtualization. EFI memory map ghosting. TPM measurement spoofing. Reads like malware. Because it is. Videos and full technical breakdown in the link. Author: https://t.co/iHtxyJSbwy #ReverseEngineering #Malware #AntiCheat

We’re opening the Exodus research vault. Over the coming weeks, we’ll publish technical writeups highlighting vulnerability research, exploit development, and deep reverse engineering from our team. First up: Michele Campa’s Adobe Acrobat Reader Escript.api use-after-free RCE. https://t.co/iycMuZQLix #VulnerabilityResearch #ExploitDevelopment #ReverseEngineering #OffensiveSecurity #CyberSecurity

Anthropic just dropped a 31-page prompting guide. Here's everything you actually need (in 10 rules): 1. You write "review this contract" and pray. Fix: Name every output. "Review this contract. Flag risks per clause. Rate severity 1-5. Return as a table." 2: You say "summarize this" on a 40-page report. Fix: 4.8 sizes the answer to the input. Cap it: "5 bullets. Each under 15 words. Start each with an action verb." 3: You write "don't use jargon. don't be salesy." Fix: Negative instructions don't stick. Flip them: "Write in plain English a 16-year-old could read aloud." 4: You type "can you help me with the email?" Fix: Each verb ships something. For example: "Go to Gmail. Find [contact]. Write the send-ready reply. Under 90 words. Tone: confident, casual." 5: You wait for Claude to web search on its own. Fix: Claude opus 4.8 calls fewer tools than 4.6. Force it: "Use web search aggressively. Verify every claim with at least 2 sources." 6: You miss the warm tone from old Claude. Fix: Claude opus 4.8 is direct. Almost zero emojis. Paste 2-3 sentences in the voice you want. Tell Claude to match the rhythm. 7: You ask for "a landing page" & get bare minimum. Fix: Drop this one line on every creative task → "Go beyond the basics." It's from Anthropic's own doc. 8: You forget Claude 4.8 doesn't reason by default. Fix: They call it "Thinking." Effort: High Add this at the end: "Think before answering (maximum reasoning)." Free upgrade. Every time. 9: You rewrite the same prompt 14 times a week. Fix: A skill is a command with instructions pre-built. Write the same prompt twice? Make it a skill. 10: You assume Claude knows what you meant. Fix: Old Claude 4.6 guessed. New Claude 4.8 does exactly what you typed. Spell it out. Output. Order. Length. Tone. Format. If you don't say it, you don't get it. To go even further & download my .md files directly: Step 1. Go to https://t.co/psB7XxAv8w. Step 2. Subscribe for free. Don't pay anything. Step 3. Open my welcome email (most skip this). Step 4. Hit the automatic reply button inside. Step 5. Download my .md files from my Notion. Bonus. Enjoy my best copy-paste prompts, too.

Andrej Karpathy: "90% of what AI twitter tells you to learn will be dead in 6 months" 90% of what ai twitter tells you to learn dies in 6 months senior engineers already stopped chasing it the dead list: autogen, crewai, autonomous agent pitches, agent marketplaces, benchmark leaderboards, semantic kernel, dspy as a general framework, horizontal "build any agent" platforms, per-seat pricing for agents the pattern is obvious. demos that break in production. hype that never ships. frameworks that go viral on monday and vanish by spring what actually compounds: context engineering tool design orchestrator-subagent pattern eval discipline the harness mindset. harness > model, always mcp as the protocol layer the edge isn't the newest framework. it's staying a few steps ahead until your signal becomes everyone's mass-opinion book and study this

Anthropic engineer: "You're not supposed to prompt Claude. You're supposed to build a system that prompts itself." this is one of the best workflows I've seen in a long time in this video she breaks down exactly how most people are using Claude: - the 14% you lose to CLAUDE.md before typing a word - the plugins that 95% of users have never installed - the workflows that run without you typing a single prompt - why typing one prompt and closing the tab is leaving 90% on the table if you've been using Claude for months and still start every session from scratch, you have at least 28 untouched features. probably 30 instead of another show tonight, watch this make sure to bookmark it before it gets lost in your feed full guide in the article below

玩 Vibe Coding 的朋友，特别划重点注意下这个，恶意代码喜欢藏的位置： Claude Code hijack (~/.claude/settings.json): A SessionStart hook is injected into Claude Code's settings file. VS Code task injection (.vscode/tasks.json): A folderOpentask trigger is written to workspace task configurations. 供应链攻击太多了，多到发麻，愿你的设备不是肉鸡。