Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351 episode artwork

EPISODE · Oct 7, 2025 · 53 MIN

Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351

from Security Weekly Podcast Network (Video)

Software has forever had flaws and humans have forever been finding and fixing them. With LLMs generating code, appsec has also been trying to determine how well LLMs can find flaws. Nico Waisman talks about XBOW's LLM-based pentesting, how it climbed a bug bounty leaderboard, how it uses feedback loops for better pentests, and how they handle (and even welcome!) hallucinations. In the news, using LLMs to find flaws, directory traversal in an MCP, another resource for learning cloud and AI security, spreadsheets and appsec, and more! Show Notes: https://securityweekly.com/asw-351

NOW PLAYING

Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351

0:00 53:52

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

No similar episodes found.

No similar podcasts found.

Frequently Asked Questions

How long is this episode of Security Weekly Podcast Network (Video)?

This episode is 53 minutes long.

When was this Security Weekly Podcast Network (Video) episode published?

This episode was published on October 7, 2025.

What is this episode about?

Software has forever had flaws and humans have forever been finding and fixing them. With LLMs generating code, appsec has also been trying to determine how well LLMs can find flaws. Nico Waisman talks about XBOW's LLM-based pentesting, how it...

Can I download this Security Weekly Podcast Network (Video) episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!