Aaron Grattafiori

20.3K posts

Aaron Grattafiori banner
Aaron Grattafiori

Aaron Grattafiori

@dyn___

Offensive Security / AI Red Teaming @ NVIDIA. Ex-GenAI and OffSec Red Teaming Lead at Meta. Ex-Principal Consultant and Researcher @ NCC Group/iSEC Partners.

Colorado Katılım Mart 2014
2.5K Takip Edilen6K Takipçiler
Sabitlenmiş Tweet
Aaron Grattafiori
Aaron Grattafiori@dyn___·
Current Status feels like this is no longer going to be fiction...
Aaron Grattafiori tweet media
English
1
0
2
1.4K
Aaron Grattafiori
@rez0__ Here? It seems terrible vs a year or two ago even. I see pretty relevant stuff and then it can devolve into garbage. I don't even interact with it...
English
0
0
0
14
Aaron Grattafiori retweetledi
James Aung
James Aung@jjamesaung·
Our Cyber and Autonomous Systems Team at @AISecurityInst performed early access testing of GPT-5.6 Sol for offensive cyber capabilities. We found Sol performed much better than GPT-5.5 on our cyber suite and comparably to Claude Mythos 5. Results below and in system card 🧵
James Aung tweet media
English
5
15
66
34.3K
Aaron Grattafiori retweetledi
Katie Paxton-Fear
Katie Paxton-Fear@InsiderPhD·
🧵Can we trust Chinese open weight models? Was a question a lot of people asked after GLM 5.2 was released, scoring very well on coding benchmarks, and suspiciously Claude-like. So I turned an open-weight coding model into a backdoor with 1hr and <$100. Let's talk about it
English
17
34
181
26.8K
solst/ICE of Astarte
@dyn___ True BUT WE CAN SPREAD THIS VIRUS that way (although apparently it would detect corrupted Pokémon)
solst/ICE of Astarte tweet media
English
1
0
1
137
solst/ICE of Astarte
“GAME BOY can’t get viruses” Oh, yeah? Well then, explain THIS
solst/ICE of Astarte tweet media
English
39
69
1.2K
51.8K
Joshua Saxe
Joshua Saxe@joshua_saxe·
@dyn___ Hadn't thought to but now you've inspired me Aaron :)
English
1
0
1
744
Joshua Saxe
Joshua Saxe@joshua_saxe·
I did an AI Q&A with a bunch of non-tech working class / middle class / poor folks where I live in Kansas yesterday and they definitely had all these concerns including catastrophic loss of control (they didn't use this term). They were also concerned that coastal plutocrats and elites will gain even more control over their lives, a concern not mentioned in this video
Claude@claudeai

There’s hope in hard questions.

English
10
4
134
20.9K
Aaron Grattafiori retweetledi
Crackmes.one
Crackmes.one@CrackmesOne·
We built crackmes-RE: 4,598 crackmes labeled with a flag and/or a runnable verifier script (2,172 have one), plus normalized obfuscation/anti-debugging/protections tags. For benchmarking LLMs' and decompilers' reverse-engineering ability. github.com/crackmesone/cr…
English
0
40
167
10K
Sam Hogan 🇺🇸
Sam Hogan 🇺🇸@samhogan·
We're releasing Inference AutoTune Distill any frontier model into a 1-30B parameter task-specific SLM with only 25 lines of code automatically route requests to reduce cost and latency by >90% ~2 hours and <$250 to train. You own the weights Available in private beta today
Sam Hogan 🇺🇸 tweet media
English
142
215
2.7K
341.5K
Aaron Grattafiori retweetledi
_ZN4DionC1Ev
_ZN4DionC1Ev@justdionysus·
I’m sad to be missing @SummC0n and @moyix and @kallsyms talk. Fittingly, gpt-5.6-sol found a nice (if slightly slow) path to real ROP (vs the ret2lib I built) against my long time hobby project, Compuserve on Win3.1, tonight:
English
1
6
24
3.6K
Aaron Grattafiori retweetledi
Ethan Mollick
Ethan Mollick@emollick·
This was one of those impressive AI thresholds for me. I gave GPT-5.6 Sol in Codex control over my computer, and asked it to win the daily challenge for the game Slay the Spire 2 (randomized factors, so can't cheat). It worked for 5 hours, making complex game choices... and won.
Ethan Mollick tweet mediaEthan Mollick tweet mediaEthan Mollick tweet mediaEthan Mollick tweet media
English
112
117
1.9K
189.8K
Justin Elze
Justin Elze@HackingLZ·
I got a truck and cowboy hat since I moved. I should probably sign up for an LTC class now.
English
6
1
27
2.3K
Greg Burnham
Greg Burnham@GregHBurnham·
PSA for benchmarkers, GPT-5.6 has a reasoning "mode" that can be "standard" or "pro", and this is orthogonal to reasoning "effort" which now goes up to "max". There's no separate pricing for "pro" and there's not (yet?) a separate Pro model. Docs linked below.
English
8
7
206
27.6K
Aaron Grattafiori retweetledi
Unprompted AU
Unprompted AU@UnpromptedAU·
Speaker Announcement: Thomas Roccia (@fr0gger_) will be speaking about AI threat intelligence - hunting threats across the AI Ecosystem. Gonna be lit!
English
1
3
13
5.6K
Aaron Grattafiori retweetledi
dreadnode
dreadnode@dreadnode·
Most offensive security evals stop at the terminal. But models now have to reason from PCB photos, floor plans, cable paths, and drone feeds — where perception and security judgment are inseparable. In our latest blog, read how we crafted offensive security evals for embodied reasoning: dreadnode.io/research/embod… Authors: Ads Dawson and @mkultraWasHere
dreadnode tweet media
English
1
4
27
2.3K
Aaron Grattafiori
@S1r1u5_ I wonder how much this maps to security outside of CTFs. Probably quite well. Everyone goes further, but the uplift for some is a big jump.
English
1
0
1
236
s1r1us (mohan)
s1r1us (mohan)@S1r1u5_·
interesting graph and great blog. thanks to ai, the overall competence of CTF teams has gone up while the skill gap between teams shrunk. if the trend continues, it might flatten the gap entirely and effectively commoditize intelligence, which means you just have to cut AI from your competitions. i dont think that will happen, i believe its a fat tail where there will be gap between best human (augmented by ai) and commodotized ai. that said, the current ctf formats are definitely not pleasurable to play when ai does most heavy-lifting, so it's a good efforts from osec to find fun format that works with ai.
s1r1us (mohan) tweet media
Robert Chen@NotDeGhost

We're launching a $100,000 fund to save CTFs.

English
1
1
36
5.1K