ThinkstScapes Research Roundup - Q4 - 2025 episode artwork

EPISODE · Feb 12, 2026 · 33 MIN

ThinkstScapes Research Roundup - Q4 - 2025

from ThinkstScapes · host Marco Slaviero, Jacob Torrey, haroon meer

Networking beyond plug-and-playGET /large file HTTP/1.1: Connection-Based TCP Amplification AttacksYepeng Pan, Lars Richter, and Christian Rossow[Paper] [Code]WAFFLED: Exploiting Parsing Discrepancies to Bypass Web Application FirewallsSeyed Ali Akhavani, Bahruz Jabiyev, Ben Kallus, Cem Topcuoglu, Sergey Bratus, and Engin Kirda[Paper] [Code]Excuse me, what precise time is it?Oliver Ettlin[Video]Cut To The QUIC: Slashing QUIC's Performance With A Hash DoSPaul Bottinelli[Slides] [Code]High-impact security at the foundationsUnderstanding the Security Impact of CHERI on the Operating System KernelZhaofeng Li, Jerry Zhang, Joshua Tlatelpa-Agustin, Xiangdong Chen, and Anton Burtsev[Code] [Paper]CUDA de Grâce: Owning AI Cloud Infrastructure with GPU ExploitsValentina Palmiotti and Samuel Lovejoy[Video]Defeating KASLR by Doing Nothing at AllSeth Jenkins[Blog post] [Code]Build a Fake Phone, Find Real Bugs: Qualcomm GPU Emulation and Fuzzing with LibAFL QEMURomain Malmain and Scott Bauer[Code] [Video]Rust in Android: move fast and fix things Jeff Vander Stoep[Blog post] [Rust course]Skynet Starter Kit: From Embodied AI Jailbreak to Remote Takeover of Humanoid RobotsShipei Qu, Zikai Xu, and Xuangan Xiao[Video]Wins and losses with LLMs and securityScaling agentic architectures for autonomous security testing and offensive operationsJason Garman, Jake Coyne, and Aaron Brown[Slides] [Code]Forced Descent: Google Antigravity Persistent Code Execution VulnerabilityAaron Portnoy[Blog post]Flaw And Order: Finding The Needle In The Haystack Of CodeQL Using LLMsSimcha Kosman[Slides] [Blog post] [Code]Rescuing the Unpoisoned: Efficient Defense against Knowledge Corruption Attacks on RAG SystemsKim Minseok, Lee Hankook, and Koo Hyungjoon[Code] [Paper]Whisper Leak: A novel side-channel attack on remote language models Jonathan Bar Or and Geoff McDonald[Blog post] [Paper] [Code]Nifty sundriesFormat-Preserving Compression-Tolerating Authenticated Encryption for ImagesAlexandra Boldyreva, Kaishuo Cheng, and Jehad Hussein[Slides] [Paper]Why Quantum Cryptanalysis is BollocksPeter Gutmann[Video] [Slides]Unmasking Organizations' Security Postures: Insights From Phishing-Resistant AuthenticationFei Liu[Slides]Those Who Do Not Learn from Advisories Are Doomed to Repeat ThemLouis Nyffenegger[Video]

This is episode 18 of Thinkst's Trends & Takeaways (for Q4 of 2025). A quarterly summary of information security research, talks and presentations. Join our host Jacob Torrey as he highlights the research and papers that caught our eye during the preceding quarter. https://thinkst.com/ts

NOW PLAYING

ThinkstScapes Research Roundup - Q4 - 2025

0:00 33:24

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

No similar episodes found.

No similar podcasts found.

Frequently Asked Questions

How long is this episode of ThinkstScapes?

This episode is 33 minutes long.

When was this ThinkstScapes episode published?

This episode was published on February 12, 2026.

What is this episode about?

Networking beyond plug-and-playGET /large file HTTP/1.1: Connection-Based TCP Amplification AttacksYepeng Pan, Lars Richter, and Christian Rossow[Paper] [Code]WAFFLED: Exploiting Parsing Discrepancies to Bypass Web Application FirewallsSeyed Ali...

Can I download this ThinkstScapes episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!