newt lab

An anti-funnel publication

newt lab is a security research firm whose home page is a journal, not a sales pitch. Here is what that means in practice, and what you will find here as the journal fills in.

in English

editorial publishing

Most security firms ask their visitors to convert. A hero banner, a value proposition, a contact button, a list of logos. We have decided not to do that. The home page you just landed on is leading with the most recent piece of writing (this one today, a vulnerability writeup or a research note tomorrow), because we want the first thing you read to be work, not marketing.

That decision shapes more than the home page. Bylines link to the people who wrote the piece, not to a generic team page. Advisories carry a disclosure clock that is correct to the day in UTC. Research-staging entries cite the prior public work they build on (Phrack issues, CVE attributions, github releases) rather than restating it as our own. The ethics page numbers each clause so policy changes are traceable, not hidden in marketing copy. Each piece is licensed under CC-BY-4.0 by default; if you want to quote, translate, or rebuild on it, you can.

What you will find here, as the journal fills in: vulnerability writeups with proof-of-concept code; research staging that points outward to the public-record work newt lab researchers have done elsewhere; advisories with the four-state disclosure clock; researcher profiles with PGP keys and reading lists; counsel-reviewed policy pages. What you will not find: cookie banners, retargeting pixels, modal popups, “subscribe to our newsletter” interstitials, or contact forms that hide the email address.

The shape of a writeup is settled. Each entry opens with a byline, a date, a reading time. Code blocks render in monospace with syntax highlighting at build time, horizontally scrollable when they exceed the column. A trivial example:

def is_anti_funnel(home_page):
    return not (
        home_page.has_cta_button
        or home_page.has_hero_pitch
        or home_page.has_modal_popup
    )

Figures are captioned. Footnotes are at the foot.1 Pull-quotes appear sparingly when a sentence earns the emphasis. Blockquotes carry a left stroke in terracotta, the editorial-divider color from the visual identity.

The publication should read like an exhibition catalog, not a content-marketing pipeline.

from the product brief, paraphrased

Asymmetric polygon composition in ink and terracotta on bone paper. A placeholder typographic specimen.
A placeholder for the eventual visual-identity specimen. Story 4.x revisits this with a proper redraw.

The print register is intentional. The publication arc points toward a paper journal at month six. Until then, the web is the surface, and we want the web surface to read like an exhibition catalog, not like a SaaS funnel. If you came here for content, the most recent piece is at the top. If you came back for the next one, it’s at the top too.

Restraint is the loudest editorial gesture available to a web publication right now.

  1. Or, on large viewports, as a sidenote when the author chooses the shortcode form. Markdown’s [^N] syntax always renders here at the bottom; the editorial choice is which form of marginalia fits the moment. ↩︎

Cite this piece
dukpt (2026). "An anti-funnel publication". newt lab journal. https://newt-lab.com/en/journal/an-anti-funnel-publication/