BabyBBP Hunter, CVE Farmer, and Skillful Skiddie. Has a hobby of growing his digital stamp collection of CTF challenges. Offensive Security at @praetorianlabs
Thought locking down LLM chat output would prevent prompt injection? We just extracted full system prompts from a "secure" assistant using nothing but form fields. Turns out if an LLM can do anything, it can leak anything.
Full exploit: https://t.co/LSGJV95phb
Had the honour of working alongside @spaceraccoonsec to discover multiple vulnerabilities in the Zscaler ecosystem, 3 of which were assigned CVEs. Find out more about our exploitation journey here: https://t.co/hiMQBJ6MKh
Kudos to the @zscaler team for responsibly disclosing and fixing CVE-2023-41969, CVE-2023-41972, CVE-2023-41973, discovered by my colleagues and I at @GovTechSG Red Team 😁
CVE-2023-41973
ZSATray passes the previousInstallerName as a config parameter to TrayManager, and TrayManager constructs the path and appends previousInstallerName to get the full path of the exe. Fixed Version: W...
https://t.co/8FPtJ71flo
CVE-2023-41972 In some rare cases, there is a password type validation missing in Revert Password check and for some features it could be disabled. Fixed Version: Win ZApp 4.3.0.121… https://t.co/934fSd0Gh5
CVE-2023-41969
An arbitrary file deletion in ZSATrayManager where it protects the temporary encrypted ZApp issue reporting file from the unprivileged end user access and modificati… https://t.co/oXsCUlwKaA
CVE-2024-0313 A malicious insider exploiting this vulnerability can circumvent existing security controls put in place by the organization. On the contrary, if the victim is legitima… https://t.co/aJe6oFIWPr
Wow. @Meta commits to dedicate three engineer-years to implement the removal of the GIL from #Python and fix upcoming compatibility and performance issues with it.
All this dependent on whether the Steering Council accepts PEP 703.
https://t.co/8YqL9KwYL1
Recently, I was messing around with IPC communication on Windows, and that led to the discovery of CVE-2023-1862 (https://t.co/1PRZjkSwB4). Shoutout to the cool folks at @Cloudflare for their speedy response!