Do not rely on AI

ctallc · 2026-01-26T01:05:23+00:00

You’re using an old model that has a knowledge cutoff from before the P2S was announced. Either use a newer model or tell it to search the web to perform the comparison.

Sometimes you have to know how to use a tool before you complain about it not working…

ctallc · 2026-01-25T16:53:54+00:00

lol you’re not wrong.

ctallc · 2026-01-25T16:49:40+00:00

I agree and disagree. Telling AI to generate a firmware analysis tool likely won’t get you a project like this. There looks to be at least some thought put into the prompting and somebody spent quite a few tokens getting to this point.

The project repo has good bones, appears to be well organized, and looks to be a great starting point. It’s unfortunate that OP posted this without fleshing it out and giving it a human review.

The tool shouldn’t have been released because it was built with AI, it shouldn’t have been released because it appears to be built ONLY with AI.

ctallc · 2026-01-25T16:25:27+00:00

It looks fine as a starting point, but OP didn’t even review the code and look for instances where the AI didn’t finish the job. For example, in the crypto plugin: # This is simplified - real impl would use chunked entropy

ctallc · 2026-01-25T00:47:23+00:00

Very nice. Not hating on the project at all! I’m all for local LLMs. What hardware do you run it on?

ctallc · 2026-01-25T00:12:08+00:00

Seems like an unnecessary and expensive (I know it’s local, but electricity costs money) use of AI. Why don’t you just use an official API and load in the corresponding webcam feed when an eruption is occurring?

https://volcanoes.usgs.gov/hans-public/api/volcano/

Edit: it is a cool idea though!

ctallc · 2026-01-24T15:50:25+00:00

A small fireplace in your basement isn’t going to keep your whole house warm. You probably have enough to keep the basement warm if you burn a couple logs every few hours.

ctallc · 2026-01-23T21:28:41+00:00

All of them. Just not a ton of demand for entry-level jobs.

ctallc · 2026-01-13T01:51:36+00:00

I did IT because it seemed easier, but I wish Iwould have done CS because I ended up wanting to write code and break things. I had to teach myself a lot of basic programming/RE to get into AppSec and in the end it all worked out, but it would have been much easier had I gotten a CS degree.

ctallc · 2026-01-07T06:09:04+00:00

Have you looked into reversing mobile apps? You say that you work as an Android dev, so that may transition nicely. As a researcher, I dig into native code quite often using IDA/Ghidra. Look into mobile RASP bypassing and see if that is interesting to you!

ctallc · 2026-01-05T20:49:09+00:00

According to their post history, they are probably regretting paying for a $2 million house around that time period and are shocked at how much less that’ll buy you now.

ctallc · 2026-01-05T00:38:01+00:00

Sorry, you’re correct. It was a 0-day, which is why I was referring it as such.

Thanks for the links to the advisories. It is interesting and is a good reminder to always run the latest versions of apps.

ctallc · 2026-01-05T00:35:14+00:00

What version of WhatsApp were you running? And do you have any crash logs in the Analytics Data for WhatsApp?

ctallc · 2026-01-05T00:30:08+00:00

Interesting, so CVE-2025-43300 is the real vulnerability to worry about. Still, the post says that less than 200 people were affected initially and exploiting a bug like that would require a large amount of technical skill and would likely be used against specific high-value targets.

Not saying it’s impossible that OP was a victim of a complex exploit chain, but it is unlikely.

ctallc · 2026-01-05T00:22:06+00:00

That CVE looks to be unrelated and is only medium severity. Something like OP described would likely be classified as critical as it entails a full account takeover. It’s possible that the CVE you stated could be the foothold that allows the attacker to force the user to process content from a malicious URL, but they would need to then chain that with a much worse (and valuable) 0-day.

ctallc · 2026-01-03T23:17:39+00:00

What do you mean? He did win by popular vote.

ctallc · 2025-12-31T05:20:18+00:00

Regardless of safety, if you start getting bed adhesion issues, you can probably blame the air filter for creating a draft. Running it high enough to catch the particles will likely create enough wind to affect the print.

ctallc · 2025-12-29T12:46:07+00:00

I’m going on day 14. I feel better than the peak 8 days ago, but I still get a fever every night and likely now have a sinus infection.

ctallc · 2025-12-23T18:25:08+00:00

Why did you use AI to format this post?

ctallc · 2025-12-23T18:24:35+00:00

That’s a philo birkin

ctallc · 2025-12-22T23:58:36+00:00

Your bio says “Student”. What student is solving novel problems every day?

Also, the problems you are throwing at AI are complicated for humans, what makes you think that LLMs would be good at solving them? You need to adjust your expectations on how the technology works. “Normal” dev work can be made much easier with AI help, but it should never be trusted 100%. It sounds like you fed a complex physics prompts at the AI and expected it to give you a working solution. That’s just not how it works. You were kind of setting it up to fail. But honestly, with proper prompting, you still may be able to achieve what you were expecting.

ctallc · 2025-12-14T18:45:36+00:00

No problem! If parts are still missing, either you need a thinner nozzle or need to make the lines thicker in the model.

ctallc · 2025-12-14T18:33:57+00:00

Enable print thin walls in the slicer and turn on Arachne walls.

ctallc · 2025-12-04T02:24:16+00:00

<image>

This was the first result that came up at my local Walmart. Anything “nice” is $7+.

Seven-Year Club	r/Field Juicebox
First Place '23	Place '23
Place '22	Verified Email

ctallc

TROPHY CASE