LRQA Nettitude Labs https://validator.w3.org/feed/docs/rss2.html This Badge is My Badge Binary Ninja Plugin: fix-stomped-imports Version Tracking in Ghidra Tools Welcome to Nettitude Labs Advanced Threat Actor Simulation – Red Team Training Contact Vulnerabilities in AI Agents Introducing SharpConflux CVE-2024-25153: Remote Code Execution in Fortra FileCatalyst Para Bailar La Bambda: Contributing to Burp Suite’s New Filtering Capabilities Introducing Yasha – Yet Another Security Header Analyser Flaw in PuTTY P-521 ECDSA signature generation leaks SSH private keys BloreBank ChatBot – Introducing our Prompt Injection Game Guiding Secure AI: NCSC’s Framework for AI System Security ETWHash – “He who listens, shall receive” CVE-2024-20356: Jailbreaking a Cisco appliance to run DOOM Preventing Type Confusion with CastGuard Emulation with Qiling Introducing the MLCommons AI Safety v0.5 Proof of Concept AI Safety Summit 2023 LRQA Nettitude’s Approach to Artificial Intelligence Pwn2Own – When The Latest Firmware Isn’t Careers Zenbleed – AMD Side-Channel Attack Targets Vectorised Functions Accelerator Program Introducing Aladdin Unravelling the Web: AI’s Tangled Web of Prompt Injection Woes Creating an OPSEC safe loader for Red Team Operations I Don’t Need a Badge – Lessons Learned from Physical Social Engineering Exploiting Network Security Cameras: Understanding and Mitigating the Risks CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution CVE-2022-25026 & CVE-2022-25027: Vulnerabilities in Rocket TRUfusion Enterprise Using LoRa as a Side Channel Creating an IR Nightmare Drop Box Avoiding Detection with Shellcode Mutator What is Cybersquatting? CVE-2017-16245 & CVE-2017-16246: Avecto Defendpoint Multiple Vulnerabilities Network Relaying Abuse in a Windows Domain How Circle Banned Tornado Cash Users CVE-2022-30211: Windows L2TP VPN Memory Leak and Use after Free Vulnerability Offensive Security: From OSCE to OSCE3 Order Confirmation Order Failed Checkout CVE-2021-44076: Cross-Site Scripting (XSS) in CrushFTP AI Prompt Injection Senior Vulnerability Researcher Senior AI/ML Research Engineer (UK Based) Flipper Zero Experiments – Sub-GHz