Research Worth Reading - Week 16, 2026 (opens in new tab)

Better late than never... 🤖 Lessons Learned From RITSEC CTF 👍 0 CTF in the age of AI. A great read for people running CTF competitions: Lessons Learned From RITSEC CTF. 😼 Fail Open, Game Over: Turning a One-Line Tomcat Fix into Unauthenticated RCE 👍 0 A cool entry point for deserialization in Apache Tomcat's cluster. Fail Open, Game Over: Turning a One-Line Tomcat Fix into Unauthenticated RCE. 🤖 I Let Claude Opus Write a Chrome Exploit 👍 0 A week, $2,283 in API costs and 20 hours of human wor...