alt Hacker NewsIt makes sense. This process of searching for bugs was slow and time-consuming so it needed to be incentivized. This is no longer the case. Now the hard part is in identifying which ones are real.
To paraphrase a famous quote: AI-equipped bug hunters find 100 out of every 3 serious vulnerabilities.
Replies
wrxd • today at 9:16 AM
> Now the hard part is in identifying which ones are real.
So it’s still a slow and time consuming process.
➕ show 1 reply
The process of finding bugs is still slow and time consuming. The kinds of vulnerabilities you find in codebases like cURL are still beyond AI. Binary exploitation is still a human only field.