OUR LATEST RESEARCH
Creating an OPSEC safe loader for Red Team Operations
As Red Teamers, we need an OPSEC safe method to execute shellcode via a range of initial access vectors. Things are getting more and more difficult with Endpoint Detection and Response (EDR) products improving, making [...]
AI Safety Summit 2023
The AI Safety Summit 2023, a seminal event hosted by the UK Prime Minister at the historic Bletchley Park, marked a pivotal moment in the evolution of the security of Artificial Intelligence. This assembly of [...]
AI Prompt Injection
In recent years, the rise of Artificial Intelligence (AI) has been nothing short of remarkable. Among the various applications of AI, chatbots have become prominent tools in customer service, support, and various other interactive platforms. [...]
Pwn2Own – When The Latest Firmware Isn’t
For the second year running, LRQA Nettitude took part in the well-known cyber security competition Pwn2Own, held in Toronto last week. This competition involves teams researching certain devices to find and exploit vulnerabilities. The first [...]
Preventing Type Confusion with CastGuard
Built into the Microsoft C++ compiler and runtime, CastGuard is a pivotal security enhancement designed to significantly reduce the number of exploitable Type Confusion vulnerabilities in applications. Joe Bialek gave a talk about CastGuard at [...]