W
(Senior) Cyber Detection & Response Engineer
(jobs.ashbyhq.com)
Infosec job in Hamburg / Germany, possibly Berlin, or maybe Madrid if you like.
Cyber Detection & Response Engineer
Includes live systems, Kubernetes and Linux. But you can learn that on the job.
Attitude is key. Learning and empathy.
Real-time monitoring of Microsoft infrastructure slop. Track outages, degraded services, and the eternal loading spinner.
(status.microslop.com)
I once had a case where the mandatory Internet VPN software hadn't been able to connect for months. The respective staff member "didn't notice" that the laptop was offline the entire time.
Just read that #Mythic is so dangerous, it finds security bugs in code that wasn't seriously audited for years.
Terribly impressed.
Maybe they shouldn't release it and delete it. It's dangerous.
@nixCraft nooooooo
My current look on #GitHub messages and emails.
1. is this spam?
2. is this scam?
3. is this malware?
4. is this AI slop?
5. is this a low effort vuln report?
6. is this an entitled non-paying user?
...
Under ideal circumstances the messages should be the opposite.
@fxdx @der_manu @ulrichkelber Ok, ja. Ich hatte bisher nur einen Fahrer und keinen eigenen Wagen 
@der_manu @ulrichkelber Am Feiertag?
@lorenzofb Drones are much more serious than most people assume. They create the sense of human garbage by gamification of war, and erode the sense of the civilian in the war doctrine. They are a game changer on the battlefield but also in politics, because the accountability of remote warfare is lower. The Huthis have drones, so do the Ukrainians. Some with 3d printed components.
Was sehr interessant ist: BEVs kauft immer noch keine. Egal was passiert. Das liegt nicht an Autos. Das liegt am Wetter 
@erd Of course, that review isn't biased and totally fair.
The person has read the code in... 16h? Let me check:
Oh wow.
* roughly 400k LLOC
* 1884 files
/
16h
The guy reads 25k LLOC per hour and doesn't sleep. This is Johnny Mnemonic.
I don't think this was a marketing gig leak. There is too much IP in there.
People have no idea how difficult this stuff can be.
There is a semantic firewall against hallucinations.
Of course... they use an agentic pattern for that.
They use Zod schemas against hallucinations.
They should write books. This is cool.
Ahh you don't stdin the code base. You segment it into pieces. It reads code, rather than copying it over. The client assumes that it cannot just send over x thousand lines and ask for inference.
Of course...
Context pruning, minimum complexity, and faithful reporting are key things to consider.
Alright. That makes total sense.
The "adversarial verifier" is key, imho.
I see it quite often, and it kicks in for complex challenges. I didn't know you could do that.
I find the #claudecode source code interesting.
It's not that different from codex or gemini. Shares many similarities.
Good job.
https://github.com/always-further/nono
This is a good #sandbox for macOS and Linux #agentic workflows.
Sadly I need this for Windows more, because both #gemini and #claude have the habit of producing rm -rf / equivalents with find in #PowerShell.
However, Windows doesn't have the developer community. So it's probably time to drop it. in the enterprise as well.
