Author presents a research paper on timing attacks, showcasing novel attack concepts to uncover server secrets through various methods such as exploring hidden attack surface, server-side injection vulnerabilities, and misconfigured reverse proxies. Real-world examples based on 30,000 live websites validate the effectiveness of these techniques, emphasizing the importance of timing attacks in cybersecurity. The paper […]
Read more »
The WebGPU specification is constantly evolving with major companies like Google, Mozilla, Apple, Intel, and Microsoft meeting regularly to discuss its development. The recent gathering of the GPU for the Web working group focused on reaching candidate recommendation status with a strong emphasis on prioritizing new features such as subgroups and subgroup matrices, texel buffers, […]
Please show your support for this project by leaving a star on GitHub if you find it helpful or inspiring. Your feedback is greatly appreciated and motivates us to continue improving. Thank you for your support! ⭐️
In this paper, we present WhisperNER, a new model that combines named entity recognition (NER) with automatic speech recognition (ASR) to improve transcription accuracy and information extraction. WhisperNER supports open-type NER, which allows it to identify various entities in speech. By training on a large synthetic dataset with diverse NER tags, WhisperNER outperforms natural baselines […]
ESET researchers have uncovered two new Linux backdoors, WolfsBane and FireWood, associated with the Gelsemium advanced persistent threat (APT) group aligned with China. This marks the first known instance of Gelsemium utilizing Linux malware. Additionally, the FireWood backdoor is tentatively linked to Gelsemium, with low confidence, as it could be shared amongst various Chinese APT […]
Broadcastarr is a comprehensive service that allows users to broadcast media content retrieved from web pages. Its features include AgendaTS, which handles various tasks such as publishing categories, indexing categories, grabbing broadcast streams, releasing broadcasts, and more. A unique aspect is the Discord Bot that allows interactions and commands through Discord. Controversially, the service is […]
Check out our ChipWits Reboot and the open source release of the original FORTH source code, celebrating the 40th anniversary of ChipWits! Learn how we recovered the code and explore the history and analysis of this innovative game. Discover the challenges of cross-platform software development in 1984 and the clever choice of using FORTH for […]
autoflow is an open source GraphRAG (Knowledge Graph) platform that integrates TiDB Vector and LlamaIndex with DSPy. This unique tool offers a live demo on TiDB.AI and features a Conversational Search page that utilizes a web crawler for efficient information retrieval. Users can edit the Knowledge Graph to enhance search accuracy. An Embeddable JavaScript Snippet […]
HTTP cookies are essential for maintaining state on the World Wide Web. Despite the vague functioning of cookies, a piece of code revealed an interesting way to save JSON values as a session cookie. This method, while slightly unconventional, worked fine in browsers until it was passed to the Go standard library. The discrepancy between […]
The project aims to enhance interpretability in language models by using Sparse Autoencoders (SAEs) to extract clear, interpretable features from the latent space of the Llama 3 model. The process involves untangling complex superimposed representations within the Llama 3 model to reveal distinct concepts represented by individual neurons, improving model understanding and optimizing information flow. […]