623 Photos and videos
Looking for a video on a specific hacking technique/tool? Check out ippsec.rocks - Searches over 100 hours of my videos to find you the exact spot in the video you are looking for.
76
349
1,771
Wanted an excuse to chat with old friends and see what they thought about the latest headlines. Figured we'd hit record and see if other people enjoyed listening to our banter. Let me know what you think.
@ippsec, @pure_strug and I just launched Adversarial Input.
Every other week, we’ll talk through what’s happening in AI from a cybersecurity perspective and try to cut through the hype to figure out what’s actually real.
First episode is live. Would love to hear what you think: pod.link/1896901842
2
4
49
6,914
And yup, know its a bit odd skipping intros and just getting right to it, but intros would require planning which introduces procrastination. pod.link/1896901842
2
1
9
2,169
@ippsec, @pure_strug and I just launched Adversarial Input.
Every other week, we’ll talk through what’s happening in AI from a cybersecurity perspective and try to cut through the hype to figure out what’s actually real.
First episode is live. Would love to hear what you think: pod.link/1896901842
1
7
40
9,314
It's stupid ideas like this, which give me hope that AI will be worth it in the end.
Jun 10
i hooked my whoop to my work calendar to find which coworker gives me the most stress 🚨
thanks to fable, I reverse engineered whoop to pull per minute heart rate. nd matched spikes with cal events and attendees
I now have a leaderboard and I think about it daily.
few info masked for obvious reasons ;)
8
50
1,886
282,822
Watching @ippsec inspired a question - How does auto-calibration (-ac) work in ffuf? Let's explore it!
youtube.com/watch?v=scHcQIDH…
1
4
34
5,887
ippsec retweeted
There has been a lot of talk about BHIS and our maternity and employment policies.
Please check out the following site for more details.
blackhillsinfosec.com/bhis-e…
Thanks!
29
6
106
106,563
The HackTheBox Sorcery Video is up! An extremely long video, but for good reason, there were a lot of tough parts of this box. My favorite part was near the beginning, when we had an XSS Bug and had to use CSRF to MITM PassKey Enrollment youtu.be/aFa1ike_Q7I
2
8
34
7,524
I can't believe it's almost been a year since I covered Device Code Phishing with @odiesec. We almost didn't make this video because M$ released plans to "fix this issue" and seemed like they were on top of it. Sad to see it is still being abused - youtube.com/watch?v=Y8SSYLEq…
Apr 9
Wild story on a big AI-powered social engineering campaign, leveraging Device Code phishing to steal Entra ID/Microsoft accounts -- all with entirely unique and personalized per-victim lures from vibecode-crafted infrastructure 🤯 Video link below cuz the X algorithm hates me: 👇
12
115
18,428
There is a lot of mythos hype and while I do think it will be better, I don’t think it will be orders of magnitude better or even proportional to its cost better.
At the end of the day, marketing is going to market. Everything I have read has been more exploits, not discovery. I think that word plays a big part but maybe I’m overthinking it.
I know of a lot of times opus (or a combo of models), can find an exploit, be confident it is valid, but fail at building an exploit due to a failed primitive (ex: kaslr in kernel bugs). Without that proof, it goes on the back burner decimating tokens until it hits the lottery. There’s so many vulnerabilities being found right now, it’s hard to prioritize when its severity is an assumption.
It’s probably been 6 months since the last major update, I’m guessing mythos knows more primitives. So when it’s launched it will look at notes left behind and get lots of credit when it worked off notes opus left behind and did a fraction of the work.
About the “it’s so dangerous” comments. I think that is primarily it not listening to the operator, doing things it shouldn’t to accomplish its goal. At that point it makes sense to do a closed beta, expand testers and try to make it obedient.
While that happens, cash in on publicity of doing the right thing and saying it’s too smart to go public. While true, it could be a little deceptive but as I said. Marketing is going to market.
10
31
314
18,447
Warning - This is more political/philosophical/etc. than my normal postings, if that upsets you ignore my story and just go watch this talk from Nicholas Carlini, about his thoughts on AI and Cyber Security: youtube.com/watch?v=1sd26pWh…. (1/3)
7
36
342
61,931
Growing up, I often wondered if people in WW2 really knew they were in WW2, or if that title was given after the fact (or near the end of it). Yes, I know I can probably find the answer but these are thoughts I had around 9/11 and I was eleven at the time without access to the internet as we know it today.
I never really thought about other times, and in the Black-hat LLM talk by Nicholas Carlini, he mentioned that AI could be like the Industrial Revolution. Which I never really thought of it like that, I'm sure there are a lot of the same issues back then with machines taking human work away. People being scared, against it, even casualties caused by it. But now that we are over that hurdle, I think everyone can agree that was a hugely beneficial leap for humans all over the globe.
So instead of wondering if we are living through WW3 (or heck even WW4). I know am wondering if in 20-30 years the younger generations will be asking us what it was like living through the "Dawn of AI". Much like I often would ask my grandparents what life was like before everyone had things like the automobile.
Anyways, those are my thoughts. Sorry for the random post but if somehow you are still reading this you'll probably really enjoy this video: youtube.com/watch?v=1sd26pWh…
(2/3)
2
3
71
12,792
And yes AI does scare me, we will likely go through some pretty scary/bad shit to get to the end result. I'm sure the Industrial Revolution was not all sunshines and rainbows. I have a lot of friends that are close to having AI discover some major vulnerabilities. The only thing that appears to hold them back are exploit mitigations, like Opus not knowing a good memory leak to make an exploit reliable.
However, the "baddies" could probably easily weaponize it. The friends I have are just doing it for the lulz and to see what AI is capable of (and are trying to submit things to get fixed). I am really anxious to see what happens when the next model drops, will people sitting on dozens of "almost exploits" suddenly get fully working exploits?
No idea. The thought scares me but the exploits exist, the "Dual Use" (good/bad) of "cyber" definitely feels like being stuck between a rock and a hard place. Do we try to set AI Back and accept that our software has vulnerabilities, hoping no one finds them? Or do we rip the band-aid off, accept there will be tough times but know eventually the defenders will surpass the attackers?
I don't want to downplay @dez_'s work with discovering the Axios Breach. But it really seems like a night of vibe-coding a monitor on public code repositories stopped a catastrophic attack. Pretty sure PyPi has been in the news every year for literally a decade due to someone getting a backdoor into a major library. For some reason, we haven't been able to put great monitors in place and I honestly think some crazy prompting/idea from him could have increased security there more than we had for a decade... That's crazy progress/hope. x.com/dez_/status/2038956586…
(3/3)
Mar 31
Cobbled together a supply chain monitoring system last week: Cursor Composer-2-fast harness on live package diffs (pypi npm). Simple! Received a slack alert within minutes of Axios compromise. Reported to the devs after triple checking, because at first I could not believe it!
2
2
62
6,099
HackTheBox Browsed video is now up! I enjoyed how this box showed how Browser Extensions worked and then the privesc involved write access to the pycache directory, which has slightly changed since i last did it over a decade ago! youtu.be/duyqJWbzQQk
1
12
101
8,716
Spent a week testing AI for vulnerability research. 14 confirmed bugs in 20 min on one target. 5% hit rate on a hardened one. Same AI, same setup. 4 approaches, what worked, what failed, why target selection matters more than model sophistication. xclow3n.github.io/post/7
5
85
434
33,027
Probably one of my favorite @NetworkChuck Videos - youtube.com/watch?v=dbMXi9q7…, loved the take on his hatred for ai, but also loves it.
Definitely in the same boat, it scares me how capable it has become in such a short time.
The other thing that really scares me is the frontier labs will likely always be a black box. The specific thing that scares me is how they use the data they collect. AFAIK - The Terms of Service when paying for the API and Subscription are wildly different, and I don't see much talk about that.
I believe the API gives the user a lot more ownership over the data, where-as subscription, it is retained longer, and there are far fewer legal protections. I hear numbers like my $200 subscription can cost them anywhere from $2000 to $10,000/m.
That's a lot of money to lose, and I know the money loss is offset by many things like the majority of users not making full use of their subscription -- But I can't imagine AI always being this cheap. So, a fear is that I will become dependent on a service that I will be priced out of in the future.
Additionally, many platforms (ex: reddit/twitter) put things in place to stop AIs from freely harvesting data, but I don't think those types of stops really block them when users are installing tools on their devices. For example, the "anti-bot captcha" isn't really doing much when the user has an extension that gives the Frontier Lab the data behind that block anyway. Is this data sent to them? I really don't know but it seems the threat landscape has rapidly changed when it comes to data collection.
I don't hate AI; it is wildly fun and does make me feel like a "10x engineer". I just hope it's a service that always remains available, and places don't start closing the doors once they have everything they need.
As odd as it sounds, and I can't believe I'm saying this, but I hope GRC can aid us here. It would be nice if AIs obeyed when sites told them to go away, but my experience is the AI recognizes the site doesn't want them, but also acknowledges it could be prompt injection, so it trusts the user over the service. Obviously, the user could do some type of prompt injection so the AI doesn't see the refusal, and local models can always ignore it -- but atleast it would help places stop the unintentional leakages due to ignorance. I imagine it's easier to kick users off the platform that use prompt injection to bypass gaurdrails versus when nothing is stopping them.
I really hope I'm just ignorant here, and someone can post why I'm wrong.
15
20
274
47,089
HackTheBox Guardian video is now up! The challenge in this box was certainly the web application, as there was more functionality than I'm used to seeing in CTFs. The app has three privilege levels we have to exploit. youtu.be/Fzt-oZX0Mzo
3
16
127
13,487
#HackTheBox RustyKey is now up! This box did a nice job showcasing a variety of Windows Exploitation. It starts w/TimeRoasting a computer account, which leads to a compromise 2 sets of credentials. Then we perform COM Hijacking & ends w/ a delegation youtu.be/vkbIVr4_ZdE
3
11
101
21,756