Captain
Now
•
100%
Well done, congratz!
Captain
Now
•
100%
Awesome, congratulations!
I've heard good things about the AWS Security Specialty certificate too. I've done a course for it which was great, though I never bothered to take the certificate (I don't feel the need for it). Have you considered it?
socket.dev
A very interesting approach. Apparently it generates lots of results: https://twitter.com/feross/status/1672401333893365761?s=20
www.csoonline.com
They used OpenSSF Scorecard to check the most starred AI projects on GitHub and found that many of them didn't fare well. The article is based on the report from Rezilion. You can find the report here: https://info.rezilion.com/explaining-the-risk-exploring-the-large-language-models-open-source-security-landscape (any email name works, you'll get access to the report without email verification)
gist.github.com
All of these might not work as well anymore, but they're still interesting to take a look at.
speakerdeck.com
This gives a great overview of when to build, buy, or adopt an open source solution for a few different common cloud security challenges. The talk can be seen here: https://youtu.be/JCphc30kFSw?t=2140
As they mention in the thread, this isn't exactly groundbreaking but it's still interesting.
> Strong preference will be given to practical applications of AI in defensive cybersecurity (tools, methods, processes). We will grant in increments of $10,000 USD from a fund of $1M USD, in the form of API credits, direct funding and/or equivalents. I think this is a great initiative and I hope we'll see some cool projects to benefit defenders.
Captain
Now
•
100%
My take so far is that there isn't really any great options to protect against prompt injections. Simon Wilson presents an idea here on his blog which could is a bit interesting. NVIDIA has open sourced a framework for this as well, but it's not without problems. Otherwise I've mostly seen prompt injection firewall products but I wouldn't trust them too much yet.
Captain
Now
•
100%
I think this post ended up in the wrong place, I suspect you meant to post it to https://infosec.pub/c/infosecpub
Captain
Now
•
100%
Good points, and I agree!
The list is currently largely made to spark interest and discussion so it'll likely change a lot. What you mentioned is also brought up on the Brainstorming page. It seems likely that "Inadequate Alignment" will be removed from the list.
Now