Glenn Pegden 

@[email protected]
997 Followers
647 Following
746 Posts

Good Guy Hacker, Vuln Management, AppSec and Bug Bounty Management Specialist. Conference addict

@hacknotcrime advocate.

Projects (on twitter) @90sukhacking @_dc151 @brfcsdotcom @hackerrunning @stickerstalluk @blueteamhackers

PronounsHe/Him
githubhttps://github.com/glennpegden2
Twitter@glennpegden
Personal Blog / Webhttps://glenn.pegden.com
Infosec Bloghttps://blueteamhackers.com
Glenn Pegden 3d ago
Every time I come across people trying to implement security controls (not just guardrails) in an LLM system prompt, this image comes to mind
Glenn Pegden 4d ago

Life of a Hockey Parent at Half Term

….. still it beats being sat playing Fortnite

Glenn Pegden May 28

Yesterday he came from Hockey Camp saying ‘I worked hard today but didn’t get MVP, so tomorrow I’m gonna work my ass off and make sure I get it’

A few minutes ago he just posted this to Insta. So proud of the little guy these days!

Show threadGlenn Pegden May 23

he irony is, I’ve been trying to do this on and off for over 40 years, and last night was by far my best attempt, in a fraction of the time of any previous attempt.

I’ve currently let it playing through endless games, optimising it’s solution (as the game involves some randomness)

Glenn Pegden May 23
Last nights rabbit hole. Using an LLM to reverse engineer an 80s BBC Micro text adventure into Z-Code, then devise a walk through, then build a test harness to play though both the original and the new version repeatedly, to test it all!
Glenn Pegden May 22
As much as I adore the class of Aspect, when I’m over here without the family, I do like to sneak off to Morecambe’s best sea-front greasy-spoon cafe for a change!
Glenn Pegden May 20
Show threadKevin BeaumontMay 20

Also - if you think 'none of our users run VSCode', check your telemetry. They do. It doesn't even need local admin rights to install.

I've tooted about this one for about two years now, Microsoft have created their own security bonfire and it's going off in their own backyard, they just haven't realised yet.

Glenn Pegden May 20
Kevin BeaumontMay 20

RE: https://hachyderm.io/@ChrisShort/116606591908387955

If you want on to Microsoft's internal network, CORPNET, publish or own an existing a VSCode extension.

The Visual Studio Code Marketplace, which Microsoft own, is completely uncontrolled.

Anybody can publish an extension, it provides code execution on endpoints, extensions auto update by default, "verified" blue tick extensions just need any domain registration, and there's no endpoint security controls at all around what users can install.

VSCode is an absolute security shittip as a result.

Glenn Pegden May 20
Hacker NewsMay 19

I've built a virtual museum with nearly every operating system you can think of

https://virtualosmuseum.org/

#HackerNews #virtualmuseum #operating #systems #techinnovation #softwarehistory #retrocomputing

The Virtual OS Museum

Over 1,700 pre-installed operating systems spanning 1948 to today, in a single Linux VM. Bundled QEMU, VirtualBox, and UTM. One-click launchers for Windows and Linux.

The Virtual OS Museum
Glenn Pegden May 20
Veronica ExplainsMay 20

Motion to strike "googling" as a verb

https://techcrunch.com/2026/05/19/google-search-as-you-know-it-is-over/

Google Search as you know it is over | TechCrunch

Google is transforming Search from a list of links into an AI-powered experience filled with conversational answers, autonomous agents, and interactive interfaces — a shift that could further reduce traffic to publishers across the web.

TechCrunch