Katie Paxton-Fear
@insider.phd
Dr, apparently. Security Adovcate @semgrep & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/her
We’re hiring!!!
Want to come work with and grow the coolest security research team? Come join us, we’re looking for someone to help lead our engineering efforts, influencing roadmap, research direction and improvements in breadth and depth of the product
job-boards.greenhouse.io/semgrep/jobs...
Want to come work with and grow the coolest security research team? Come join us, we’re looking for someone to help lead our engineering efforts, influencing roadmap, research direction and improvements in breadth and depth of the product
job-boards.greenhouse.io/semgrep/jobs...
Job Application for Engineering Manager, Security Research Coverage at Semgrep
SF, NYC, Boston, Denver
job-boards.greenhouse.io
October 22, 2025 at 8:12 AM
We’re hiring!!!
Want to come work with and grow the coolest security research team? Come join us, we’re looking for someone to help lead our engineering efforts, influencing roadmap, research direction and improvements in breadth and depth of the product
job-boards.greenhouse.io/semgrep/jobs...
Want to come work with and grow the coolest security research team? Come join us, we’re looking for someone to help lead our engineering efforts, influencing roadmap, research direction and improvements in breadth and depth of the product
job-boards.greenhouse.io/semgrep/jobs...
Check out the latest Paged Out! Zine (page 22 under hardware) and you’ll find an article written by me about my little eink labelling project and the highs and lows of learning to CAD, solder and program an ESP32, how hard can it be?
October 4, 2025 at 7:49 PM
Check out the latest Paged Out! Zine (page 22 under hardware) and you’ll find an article written by me about my little eink labelling project and the highs and lows of learning to CAD, solder and program an ESP32, how hard can it be?
I've spent a lot of time thinking about the best way to teach API security from the ground up for beginners.
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
October 4, 2025 at 5:02 AM
I've spent a lot of time thinking about the best way to teach API security from the ground up for beginners.
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
I've spent a lot of time thinking about the best way to teach API security from the ground up for beginners.
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
October 3, 2025 at 5:01 PM
I've spent a lot of time thinking about the best way to teach API security from the ground up for beginners.
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
Today, I'm excited to launch the result: My brand new API Hacking course on JHT. It's built to give you a deep, foundational understanding of how to test modern APIs. 🧵
Reposted by Katie Paxton-Fear
September 27, 2025 at 5:03 PM
Reposted by Katie Paxton-Fear
📅 Join @insider.phd as she explores the realities of AI’s impact on AppSec:
🔹 Moving past uncertainty to see where AI truly fits in.
🔹 Automating repetitive tasks and cutting false positives.
🔹 Strengthening security, improving accuracy, reducing risk.
➡️ semgrep.dev/events/doubt...
🔹 Moving past uncertainty to see where AI truly fits in.
🔹 Automating repetitive tasks and cutting false positives.
🔹 Strengthening security, improving accuracy, reducing risk.
➡️ semgrep.dev/events/doubt...
September 18, 2025 at 4:01 PM
📅 Join @insider.phd as she explores the realities of AI’s impact on AppSec:
🔹 Moving past uncertainty to see where AI truly fits in.
🔹 Automating repetitive tasks and cutting false positives.
🔹 Strengthening security, improving accuracy, reducing risk.
➡️ semgrep.dev/events/doubt...
🔹 Moving past uncertainty to see where AI truly fits in.
🔹 Automating repetitive tasks and cutting false positives.
🔹 Strengthening security, improving accuracy, reducing risk.
➡️ semgrep.dev/events/doubt...
My favourite genre on YouTube is engineers making stuff no one asked them to make, how hard can it be? The struggle is the fun
youtu.be/qy_9w_c2ub0
youtu.be/qy_9w_c2ub0
I built my own Phone... because innovation is sad rn
YouTube video by Marcin Plaza
youtu.be
September 3, 2025 at 10:06 AM
My favourite genre on YouTube is engineers making stuff no one asked them to make, how hard can it be? The struggle is the fun
youtu.be/qy_9w_c2ub0
youtu.be/qy_9w_c2ub0
Tomorrow I'll be live on this webinar chatting about Hacker Summer Camp with my boss. We'll recap everything that happened and all the talks we did, share our top moments and our highlights from this year as well as share Jayson's experience at his first hacker con!
1/2
1/2
September 2, 2025 at 5:21 PM
Tomorrow I'll be live on this webinar chatting about Hacker Summer Camp with my boss. We'll recap everything that happened and all the talks we did, share our top moments and our highlights from this year as well as share Jayson's experience at his first hacker con!
1/2
1/2
What if the AI agent designed to help you... decides to hack you instead? 🤯
That's the chilling reality I'll be exploring in my upcoming talk: AI Agents Gone Rogue? Hackbots, AI Agents and The Future of the AI Attack Surface
That's the chilling reality I'll be exploring in my upcoming talk: AI Agents Gone Rogue? Hackbots, AI Agents and The Future of the AI Attack Surface
August 29, 2025 at 9:21 AM
What if the AI agent designed to help you... decides to hack you instead? 🤯
That's the chilling reality I'll be exploring in my upcoming talk: AI Agents Gone Rogue? Hackbots, AI Agents and The Future of the AI Attack Surface
That's the chilling reality I'll be exploring in my upcoming talk: AI Agents Gone Rogue? Hackbots, AI Agents and The Future of the AI Attack Surface
Ironically this video ended up in my eyeballs thanks to the YouTube algorithm but it is REALLY good and really speaks to some of my thoughts around algorithmic content being horrible for you, and I really recommend it 🔥🔥
youtu.be/Bdj14_jdumI
youtu.be/Bdj14_jdumI
be your own algorithm
YouTube video by pagemelt
youtu.be
August 28, 2025 at 9:17 PM
Ironically this video ended up in my eyeballs thanks to the YouTube algorithm but it is REALLY good and really speaks to some of my thoughts around algorithmic content being horrible for you, and I really recommend it 🔥🔥
youtu.be/Bdj14_jdumI
youtu.be/Bdj14_jdumI
MCP is all anyone can talk about right now, but uhh what is it? And what do you actually need to know about the latest hyped AI thing? Join me tomorrow as I dig into it as we cover a TL;DR for security teams and perhaps why it might actually be industry changing
August 18, 2025 at 5:34 PM
MCP is all anyone can talk about right now, but uhh what is it? And what do you actually need to know about the latest hyped AI thing? Join me tomorrow as I dig into it as we cover a TL;DR for security teams and perhaps why it might actually be industry changing
How to get rid of cash at DEFCON? Buy patches! Here are my DEFCON purchases (combined with a few I already had!
August 18, 2025 at 3:37 PM
How to get rid of cash at DEFCON? Buy patches! Here are my DEFCON purchases (combined with a few I already had!
Officially booked flights to Australia! I’ll be in Melbourne, Brisbane and Sydney for YOW! Conference(s)
30 Nov - 6 Dec Melbourne
6 Dec - 10 Dec Brisbane
10 Dec - 14 Dec Sydney
If you want to meet up let me know! This will be my first time in Australia (and flying this far!)
30 Nov - 6 Dec Melbourne
6 Dec - 10 Dec Brisbane
10 Dec - 14 Dec Sydney
If you want to meet up let me know! This will be my first time in Australia (and flying this far!)
August 16, 2025 at 9:10 PM
Officially booked flights to Australia! I’ll be in Melbourne, Brisbane and Sydney for YOW! Conference(s)
30 Nov - 6 Dec Melbourne
6 Dec - 10 Dec Brisbane
10 Dec - 14 Dec Sydney
If you want to meet up let me know! This will be my first time in Australia (and flying this far!)
30 Nov - 6 Dec Melbourne
6 Dec - 10 Dec Brisbane
10 Dec - 14 Dec Sydney
If you want to meet up let me know! This will be my first time in Australia (and flying this far!)
How do you find Reflected XSS in real programs? Well I'm glad you asked! This episode we're diving DOM-first into Javascript and covering how to find XSS in highly interactive applications like Angular!
August 13, 2025 at 2:18 PM
How do you find Reflected XSS in real programs? Well I'm glad you asked! This episode we're diving DOM-first into Javascript and covering how to find XSS in highly interactive applications like Angular!
@blenster.com Kindly requesting the 2hr workshop version of your KiCAD talk 🙏🙏🙏🙏
August 9, 2025 at 7:21 PM
@blenster.com Kindly requesting the 2hr workshop version of your KiCAD talk 🙏🙏🙏🙏
Thank you everyone for coming to my DEEPLY unserious vibe coding talk, hopefully it inspires you to just learn how to program ESP32 rather than spend 4-5 hours trying to get it to produce working YAML
August 9, 2025 at 3:11 AM
Thank you everyone for coming to my DEEPLY unserious vibe coding talk, hopefully it inspires you to just learn how to program ESP32 rather than spend 4-5 hours trying to get it to produce working YAML
Looking for me at DEFCON? Here’s where I’ll be!
August 7, 2025 at 4:58 PM
Looking for me at DEFCON? Here’s where I’ll be!
Here is everywhere I'll be in Vegas 2025, if you want to pop by say hi, meet up for coffee or listen to me waffle on about security... a thread
1/9
1/9
August 3, 2025 at 11:24 PM
Here is everywhere I'll be in Vegas 2025, if you want to pop by say hi, meet up for coffee or listen to me waffle on about security... a thread
1/9
1/9
🥁🥁🥁🥁🥁
Pleased to announce that I have officially joined the team at @semgrep.com as a security advocate! I’m thrilled to be alongside my fellow Infosec content creators (aaaaaa 🫨) in helping organisations secure the next generation of applications the easy way!
Pleased to announce that I have officially joined the team at @semgrep.com as a security advocate! I’m thrilled to be alongside my fellow Infosec content creators (aaaaaa 🫨) in helping organisations secure the next generation of applications the easy way!
July 21, 2025 at 8:06 PM
🥁🥁🥁🥁🥁
Pleased to announce that I have officially joined the team at @semgrep.com as a security advocate! I’m thrilled to be alongside my fellow Infosec content creators (aaaaaa 🫨) in helping organisations secure the next generation of applications the easy way!
Pleased to announce that I have officially joined the team at @semgrep.com as a security advocate! I’m thrilled to be alongside my fellow Infosec content creators (aaaaaa 🫨) in helping organisations secure the next generation of applications the easy way!
Recommended simply for the worlds weirdest souvenirs
July 21, 2025 at 7:59 PM
Recommended simply for the worlds weirdest souvenirs
Reposted by Katie Paxton-Fear
🕵️♂️ Something strange is happening at Meow Wolf’s Omega Mart. Join Semgrep to challenge your perception of the limits of AppSec reality in the agentic era on Tuesday, August 5th from 6-9 pm.
🎟️ Register: semgrep.dev/events/omega...
#HackerSummerCamp #Semgrep #OmegaMart #MeowWolf #AppSec #BlackHat
🎟️ Register: semgrep.dev/events/omega...
#HackerSummerCamp #Semgrep #OmegaMart #MeowWolf #AppSec #BlackHat
July 21, 2025 at 5:00 PM
🕵️♂️ Something strange is happening at Meow Wolf’s Omega Mart. Join Semgrep to challenge your perception of the limits of AppSec reality in the agentic era on Tuesday, August 5th from 6-9 pm.
🎟️ Register: semgrep.dev/events/omega...
#HackerSummerCamp #Semgrep #OmegaMart #MeowWolf #AppSec #BlackHat
🎟️ Register: semgrep.dev/events/omega...
#HackerSummerCamp #Semgrep #OmegaMart #MeowWolf #AppSec #BlackHat
Wondering where I'll be speaking this Hacker Summer Camp? Well here's the official schedule! I'll be speaking at the @BugBountyDEFCON, @IoTvillage @ DEFCON on friday. Then on saturday I'll be delivering a 2hr workshop on everything API hacking at the @RedTeamVillage
1/2
1/2
July 17, 2025 at 4:48 PM
Wondering where I'll be speaking this Hacker Summer Camp? Well here's the official schedule! I'll be speaking at the @BugBountyDEFCON, @IoTvillage @ DEFCON on friday. Then on saturday I'll be delivering a 2hr workshop on everything API hacking at the @RedTeamVillage
1/2
1/2
What kind of Hackybara are you? Come find me at Hacker Summer Camp and say hi for one (or an entire set) of these little guys, I’ll be at BlackHat, BSidesLV and DEFCON
July 8, 2025 at 10:53 AM
What kind of Hackybara are you? Come find me at Hacker Summer Camp and say hi for one (or an entire set) of these little guys, I’ll be at BlackHat, BSidesLV and DEFCON
I will be at Hacker Summer Camp this year and it’s going to be a busy one!
8/3 - 8/11
✅In person free workshop
✅Talks (more info soooooon)
✅Booth Duty
✅Big announcement AND fun giveaway stuff
PLEASE invite me to things I can’t wait to catch up with everyone!
8/3 - 8/11
✅In person free workshop
✅Talks (more info soooooon)
✅Booth Duty
✅Big announcement AND fun giveaway stuff
PLEASE invite me to things I can’t wait to catch up with everyone!
July 1, 2025 at 10:05 PM
I will be at Hacker Summer Camp this year and it’s going to be a busy one!
8/3 - 8/11
✅In person free workshop
✅Talks (more info soooooon)
✅Booth Duty
✅Big announcement AND fun giveaway stuff
PLEASE invite me to things I can’t wait to catch up with everyone!
8/3 - 8/11
✅In person free workshop
✅Talks (more info soooooon)
✅Booth Duty
✅Big announcement AND fun giveaway stuff
PLEASE invite me to things I can’t wait to catch up with everyone!
I am delighted to be apart of this panel at the @RUSI_org on the 7th of July, we'll be exploring @joetidy's world of teenager cyber criminals and answer the key question, how do we prevent teenage boys down this path in the first place
1/2
1/2
June 26, 2025 at 5:30 PM
I am delighted to be apart of this panel at the @RUSI_org on the 7th of July, we'll be exploring @joetidy's world of teenager cyber criminals and answer the key question, how do we prevent teenage boys down this path in the first place
1/2
1/2