Category: Insights
-
Our Journey into building AI LLM pentesting agents
Around 2 years ago I started working on AI powered pentesting engine. My background is in offensive security, so I thought, why not use my knowledge and train AI to follow my methodologies. It was super exciting. I was planning to do that for a long time but when transformers and as a result LLMs…
-
Out of the Shadows – Shadow IT
In today’s fast-paced business environment, the rapid adoption of digital tools and cloud services has revolutionized how organizations operate. However, this technological surge brings with it hidden threats, notably Shadow IT and infrastructure blind spots. These issues can create significant security and compliance risks if not properly managed. A crucial strategy in mitigating these risks…
-
Unmasking the hidden threats – OSINT with DNS records
In the age of cloud computing, businesses are increasingly adopting cloud services to streamline operations, enhance scalability, and reduce costs. However, this shift to the cloud introduces new security challenges, particularly in the realm of Open Source Intelligence (OSINT). One often overlooked aspect is the use of DNS records, specifically TXT records, which can inadvertently…
-
Archive: Issues with BLE in IOT devices
I really wanted to see what was going on under the hood, so to speak, when a new device ( IOT) is turned on and it is magically detected by the mobile (IOS/Android) app for the initial configuration. Just for fun, I started sniffing the Bluetooth communication during the initial connection and it was quite…