Cris Neckar on the early days of securing Chrome, chasing browser exploits

Episode sponsors:

• Binarly, the supply chain security experts (https://binarly.io)
• XZ.fail backdoor detector (https://xz.fail)

Cris Neckar is a veteran security researcher now working as a partner at Two Bear Capital. In this episode, he reminisces on the early days of hacking at Neohapsis, his time on the Google Chrome security team, shenanigans at Pwn2Own/Pwnium, and the cat-and-mouse battle for browser exploit chains. We also discuss the zero-day exploit marketplace, the hype and promise of AI, and his mission to help highly technical founders bring products to market.

• Unedited transcript (AI-generated)
• Cris Neckar on LinkedIn
• Cris Neckar Bio (Two Bear Capital)
• Teenager hacks Google Chrome with three 0days
• Research on Trident zero-day flaws
• Cris Neckar podcast transcript (Unedited)