See All Vulnerability ResearchAI for SecurityCompetitionsNewsProductOpen Source ProjectsFAQCase Study
Using Context to Discover IDOR Vuln in Healthcare Co: Technical Deep Dive

Using Context to Discover IDOR Vuln in Healthcare Co: Technical Deep Dive

In an engagement with a healthcare client, Xint uncovered an IDOR vulnerability allowing unauthorized access to patients' protected health information (PHI).
Xint's avatar
Jun 02, 2026
Vulnerability ResearchAI for SecurityCase Study
FAQ: Is AI Application Security Testing Reliable If Results Vary Between Scans?

FAQ: Is AI Application Security Testing Reliable If Results Vary Between Scans?

Non-deterministic LLM vuln discovery is actually a strength for Xint since it can go beyond fixed rules or patterns that are easily gamed by attackers.
Hector Leano's avatar
May 28, 2026
ProductAI for SecurityFAQ
AI won’t replace human pentesters and security teams. It will be a force multiplier

AI won’t replace human pentesters and security teams. It will be a force multiplier

LLMs are changing the role of security researchers and engineers, but companies laying off human cyber experts just as AI coding generates more vulnerable code are in for a world of hurt.
Hector Leano's avatar
May 26, 2026
AI for Security
Copy Fail: From Pod to Host.

Copy Fail: From Pod to Host.

A walkthrough of Copy Fail (CVE-2026-31431) as a container escape primitive: from a 4-byte page cache write to host root on Kubernetes.
Juno Im's avatar
May 19, 2026
Vulnerability ResearchAI for SecurityOpen Source Projects
Xint’s False Positive Rate: Methodology and Purpose

Xint’s False Positive Rate: Methodology and Purpose

We don’t know the FP rate for the latest frontier models when it comes to AppSec. We share ours and how we arrived at it.
Hector Leano's avatar
May 18, 2026
ProductAI for Security