web security

3 posts

The agent reads the page and obeys

How Playwright-driven AI agents change the web's threat model: prompt injection, session hijacking, broken CAPTCHAs, and what to do this quarter.

May 27, 2026

Article

The storefront went dark by sundown

A merchandise site linked to Kash Patel went dark after allegedly serving malware. Operator breakdown of the control gaps that made takedown the only response.

May 24, 2026

Article

I built Burp Suite in Rust

Technical breakdown of an open-source Burp Suite alternative - proxy core, fuzzer, scanner depth, Collaborator gap, and what it means for vuln research.

May 19, 2026