Swarmer enables stealthy Windows registry persistence by exploiting mandatory user profiles and the Offline Registry API to bypass EDR detection. Learn how this technique leverages NTUSER.MAN files to modify the registry without triggering standard API monitoring.

28,194 threats detected. Interactive analysis of AI attack patterns targeting LLMs and AI agents.

In this post, I introduce and demonstrate the attack method Blind Boolean-Based Prompt Injection (BBPI) which is a prompt injection…

Horizon3.ai discovered multiple vulnerabilities in SolarWinds Web Help Desk that enable unauthenticated remote code execution.

[this work was conducted collaboratively by Bryan Alexander and Jordan Whitehead] This post details several vulnerabilities discovered in the popular online game Command & Conquer: Generals. We recently presented some of this work at an information security…

AI-driven penetration testing now executes thousands of actions per hour but still lacks the strategic intuition humans apply in competitive security. To build cybersecurity superintelligence...

Overview Over the past few weeks, I have been tracking a credential harvesting campaign that repeatedly abuses newly registered *.contractors domains to deliver Gmail and Microsoft 365/Outlook phis…

Share passwords and credentials securely with self-destructing, encrypted links. Zero-knowledge encryption means we never see your data.

Security research, vulnerability disclosures, and application security insights.

Our AI pentester, Hackian, found a RCE on Clawdbot/Moltbot by hacking it fully autonomously in under 2 hours. Learn how and read the logs in this blog.

CVE-Alert helps organizations and individuals track Common Vulnerabilities and Exposures (CVEs) in real-time with vendor/product subscriptions and email notifications.

A defensive technique for constraining LLM agent database access using object-capabilities, plus a live CTF challenge.

Jan 15, 2026 - Nils Amiet -

When Ivanti removed the embargoes from CVE-2026-1281 and CVE-2026-1340 - pre-auth Remote Command Execution vulnerabilities in Ivanti’s Endpoint Manager Mobile (EPMM) solution - we sighed with relief.

Clearly, the universe had decided to continue mocking…

The search warrant to raid a Washington Post reporter’s home shows how authorities can open your phone without your consent.

This work introduces a predictive BGP security intelligence approach whose core idea is the systematic mapping of Internet routing risk zones — specific ASNs, prefixes, and topological regions of the global BGP graph where routing attacks are most likely…