If you're interested in AI security, have a go at our prompt injection challenge on @immersivelabs. I've spent the last couple of weeks working on the frontend so hopefully it's a good user experience 😄 Let me know what you think! 🤖 #ChatGPT#ai https://t.co/ggDBWUpqfI
I had a small adventure with leaky websocket that would spit out plaintext credentials. The blog post documents the journey from discovery to disclosure.
https://t.co/j4kBzPaYZ9
What’s the difference between a ‘zero-day’ and ‘one-day’? Read our latest blog by Will Roberts @rushisec, Cyber Security Engineer, to see how he developed a proof of concept exploit using limited details from Microsoft. https://t.co/kPncBc5Rs9 #cybersecurity
Little weekend project, starting to learn some assembly and got around to setting up my Pi to run some ARM code. Hoping to make something slightly more complex next but it's a good start!
@joshva_jebaraj As far as I know the exploit only works out-of-the-box on desktop versions of Ubuntu, running as the systemd-network user. If you're trying it with vagrant then it may be running with Ubuntu server, which requires some extra configuration as stated in the readme
My exploit script for Nimbuspwn (CVE-2022-29799/CVE-2022-29800) has been released and is available below. Method for hitting the race is a little lazy but usually works in 12 attempts or less. Comes with a Sigma rule for blue teamers. Have fun!
https://t.co/BfmVVY9DxA
@burg0o @Essb33 Oh for sure, I was speaking from the context of someone going into their first job. Once you've got your foot in the door with some experience I think it gets a lot easier