I know how finding vulnerabilities works. I was using static analysis as an example of why exploiting them is the hard part, something that you don’t seem to disagree with.
And I gave you a concrete example of how LLMs both find and exploit these vulnerabilities. It’s quite evident that your disagreement stems from not having actually used these tools to find vulnerabilities.
I know how finding vulnerabilities works. I was using static analysis as an example of why exploiting them is the hard part, something that you don’t seem to disagree with.
And I gave you a concrete example of how LLMs both find and exploit these vulnerabilities. It’s quite evident that your disagreement stems from not having actually used these tools to find vulnerabilities.
Have you?
Yes, quite extensively in fact. That’s how I found a massive security hole in piefed that I mentioned earlier in fact.
I assume you’re a security researcher?
No, I’m a software developer.