SecDim

In the React2Shell exploitation, we can abuse a deserialization vulnerability in React Server Components to smuggle attacker-controlled strings into the internal module loader. We'll be writing about the lessons learnt from this. Coming Soon. #appsec #securecoding #programming

I said it was coming. It's here. Vibe Coding Security is live — why AI produces vulnerable code, how to design securely before prompting, how to review output as an attacker, and how to catch what review misses. 👉 learn.secdim.com/course/vibe-co…

You vibe code an app. Your app works. Congratulations. So does the vulnerability inside it. Vibe coding has a systemic security problem and AI can't fix it. Here's why 🧵

DEVWorld is only a few days away! The wargame contest with a Luxury Weekend stay on the line will be reaching its zenith by Friday. 👉 Check it out now: secdim.com/devworld/ #appsec #securecoding #devworld #programming #cybersecurity

💎 Win a Luxury Weekend Away. 🏆 The Grand Prize for the DEVWorld 2026 AI Wargame is a luxurious stay in a 4-star hotel, complete with curated dinners and premium experiences 🎯 Enter and claim your shot at the ultimate reward. 👉secdim.com/devworld/ #appsec #devworld #ai

Only a week left until DEVWorld 2026 We will be hosting the official developer security contest for DEVWorld 2026. The Grand Prize for the winning team is a luxurious stay in a 4-star hotel 💎 👉 Check it out: secdim.com/devworld/ #appsec #securecoding #devworld

We ran a workshop at NDC Sydney 2026 alongside a live Wargame. The session included security exercises, analysing application behavior, and exploring exploits. If you're attending NDC, the Wargame is still available: 👉 secdim.com/ndc #appsec #securecoding #ndc

The Black Hat Asia 2026 Wargame. Work through hands-on security challenges covering vulnerability discovery, exploitation, and analysis. If you're attending, come say Hi to Harley while you're there 👋 👉 secdim.com/blackhat #appsec #securecoding #blackhat

NDC Sydney 🇦🇺 is only a week away! We will be hosting a Talk alongside an AI Workshop, Wargame edition. 👉 Check it out: secdim.com/ndc #appsec #securecoding #ai #ndc

Only 1 week left until Black Hat Asia 🇸🇬 We will be hosting an AI Wargame, Drop by to say Hello 👋 and take your shot at the competition! See you there. 👉 secdim.com/blackhat/ #appsec #securecoding #ai #blackhat

We found a zero-day path traversal in ONNX — CVE-2026-27489. It took three patches to get fixed. We break down how the vulnerability survived each fix and what it takes to actually kill a traversal bug. 👉 Full analysis: secdim.com/blog/post/two-… #appsec #securecoding #onnx

We ran a workshop at NDC Security Oslo 2026, alongside a live Wargame. Congratulations to our winners 🎉 🥇 shoping.vold 🥈 dorinm3723 🥉 iulia.s.toader Thanks to everyone who participated. See you next time. #appsec #securecoding #ndc

Github recently joined a commitment of $12.5 million to support the Linux Alpha-Omega initiative. At SecDim, our open source program provides developers access to training to help improve their app security. Are you an open source dev? Get in touch: 👉 secdim.com/open-source/

Only 1 week left until the INCYBER FORUM in Lile 🇫🇷 We will be presenting a talk: AI and Secure Code Learning: An Empirical Analysis of 420 AI-Generated Security Fixes See you there. 👉 fic.app.swapcard.com/widget/event/f… 👉 europe.forum-incyber.com/en/2026-progra… #appsec #securecoding #ai

Your AI assistant just received a WhatsApp message. It ran a shell command. Then it wrote new code and executed it. This is how OpenClaw works by design — and why 104 vulnerabilities appeared in 18 days. 👉 Read more: secdim.com/blog/post/dang… #appsec #securecoding #openclaw

We just released a new set of Firmware Security challenges focused on vulnerabilities in embedded and IoT devices. ⚡ Some of the challenges are free for a limited time in the Weekly Incident. Check it out now: 👉 secdim.com/news/firmware-… #appsec #iot #securecoding #firmware

Some of our new Exploitation challenges are now free for a limited time in the Weekly Incident Game. If you want a hands-on taste of breaking vulnerable apps and contracts, this is your window. 👉 Go try it now: play.secdim.com/game/weekly-in… #appsec #ctf #security

We’ve just launched a brand-new category on SecDim: Exploitation. Your objective isn’t to patch vulnerabilities, it’s to find and exploit them. Go break things (responsibly) 🥷 👉 play.secdim.com/game/exploitat… #appsec #securecoding #programming #security

At SecDim, we're proud to have supported the journeys of many. One such person is M4773L. 🏆 13 awards 📝 5 challenges created 🥉 3rd place Hall of Fame Stories like his are why we built SecDim. 👉 Start your Journey today: play.secdim.com #appsec #securecoding #ctf

Looking to improve your cloud security skills? We’ve just released new hands-on challenges focused on Azure and GCP ☁️ Some of them are now featured in our Weekly Incident game for a limited time. 👉 Try them here: play.secdim.com/game/weekly-in… #CloudSecurity #appsec #securecoding