Giuseppe `N3mes1s`
@gN3mes1swindows, macos, linux, android && lowlevel && ring-1 lover; EDR chef; malware hunter; purple team💜
Similar User
@unpacker
@bartblaze
@jduck
@Xylit0l
@REhints
@tiraniddo
@DidierStevens
@Ivanlef0u
@Blackmond_
@volatility
@r00tbsd
@aionescu
@enigma0x3
@JonathanSalwan
@angealbertini
Following the release of our latest system level safeguards, today we're sharing new research papers outlining work on Llama Guard 3 1B & Llama Guard 3 Vision that support input/output safety on the edge and in multimodal prompts.
🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments.…
Just posted: "Empowering Gemini for Malware Analysis with Code Interpreter & GTI". In our 3rd installment, Gemini successfully deobfuscated IOCs and enriched analysis with GTI function calls, avoiding hallucinations. More advancements coming soon! cloud.google.com/blog/topics/th…
🎉 It's official! The #CAMLIS2024 abstracts & videos are now live on our website & our YouTube channel! 🚀 Don't miss this opportunity to explore some incredible work at the intersection of machine learning & info security! 🌐 Website: camlis.org/2024-conference
Quick demo showing how, with the latest macOS ChatGPT app, a prompt injection can now come from random text in the Terminal. In this case the prompt injection invokes the memory tool (to=bio) to persist information into your ChatGPT's brain.
I mean. What could go wrong.
ChatGPT 🤝 VS Code, Xcode, Terminal, iTerm2 ChatGPT for macOS can now work with apps on your desktop. In this early beta for Plus and Team users, you can let ChatGPT look at coding apps to provide better answers.
Backdoor attempt on @exolabs through an innocent looking PR. Read every line of code. Stay safu.
Getting made fun of because you cover laptop webcam with a sticker? 😭 Here are materials from my talk about controlling ThinkPad X230 webcam LED over USB presented at POC by @POC_Crew 😎 Use these as a comeback 😁 Slides: docs.google.com/presentation/d… Code: github.com/xairy/lights-o…
You either detect the procedure or you don’t. Does it matter what ID it’s mapped to?
Hear me out… does anyone else think the MITRE ATT&CK framework is basically a waste of time? Feels like people care more about ‘Did you map it to MITRE?’ than actually understanding what’s happening. Are we here to do real security work or just fill out checklists?
#flareon11 For task 9, massive thanks to the hero who wrote Python bindings for the Time-Travel Debugger (github.com/commial/ttd-bi…). Being able to record a process execution once and then arbitrarily navigating it (reading regs/memory along the way) really feels like a superpower.
🚨EDR telemetry evals for the new Linux category have started. The first results are in, and they ain't pretty 😔 I genuinely hope vendors succeed because it benefits everyone! Even so, the telemetry evals will remain objective and open to improvement via community feedback. We…
"Anton’s Alert Fatigue: The Study" bit.ly/3UJWBI1 is a result of some agonizing pondering of the "alert fatigue problem" over the years. Hopefully it is a fun read, because it was not a very fun write -)
LLMs as vulnerability hunters? Yup. Our Vulnhuntr tool from @ProtectAICorp uses Claude to scan Python code for 0days. 🤯 Check out the NoHat talk for the full story from @DanHMcInerney & @byt3bl33d3r 👇 hubs.ly/Q02Xqxkv0
Test-driven development—not just for software engineering. @matterpreter breaks down how applying this logic streamlines how you execute, evaluate, and iterate on your detections to better augment your defensive coverage hubs.la/Q02W9xs80
We've observed a rise in Living off the Land email attacks where attackers abuse legitimate service infrastructure. Our newest Attack Spotlight details one of these attack variants abusing Docusign to deliver malware via callback phishing: sublime.security/blog/living-of…
I'm delighted to share with you a #Rust project we've been working on for a while called #Hyperlight. The Hyperlight project enables devs to use KVM or Hyper-V as a library for running hypervisor isolated funcs with extremely low-latency cold starts. opensource.microsoft.com/blog/2024/11/0…
I'm hiring for a Head of AI Security Testing (aka AI red teaming) role! This role is responsible for conducting applied research to develop novel ways to manipulate and breach AI systems, focused on meaningful impacts to safety and security. Joining a huge team of hackers,…
The 6.3 Risks and Mitigations part of the paper are so eye opening from a Risk & Security POV. "it is imperative that agents operate under a strict principle of least privilege, and maximum oversight." Just to quote some of the important points we are going to see more and…
📢Introducing Magentic-One, a generalist 5-agent multi-agent system for solving open-ended web- and file-based tasks. 🤖🤖🤖🤖🤖 Magentic-One represents a significant step towards agents that can complete tasks that people encounter in their daily lives and can achieve strong…
🍅Surprising finding: Basic adversarial pop-ups trick state-of-the-art VLMs (e.g., @AnthropicAI computer use agent) into clicking 🚩>90%🚩of the time in OSworld! 🥝Clear signal: We need more robust safety measures before deploying computer use agents at scale.
Humans sometimes get distracted by pop-ups… but for AI agents, it’s worse! Pop-ups explicitly designed for agents can make them click 87% of the time, majorly derailing their tasks. @taoyds @Diyi_Yang arxiv.org/abs/2411.02391 github.com/SALT-NLP/Popup…
InjecGuard: Benchmarking and Mitigating Over-defense in Prompt Injection Guardrail Models injecguard.github.io
United States Trends
- 1. Browns 100 B posts
- 2. Lakers 52,9 B posts
- 3. Franz 18,3 B posts
- 4. Jameis 51,2 B posts
- 5. Bron 15,3 B posts
- 6. #ThePinkPrintAnniversary 24,9 B posts
- 7. Tomlin 20,8 B posts
- 8. Reaves 7.578 posts
- 9. Pickens 16,7 B posts
- 10. Chris Brown 16,3 B posts
- 11. Pam Bondi 247 B posts
- 12. Anthony Davis 3.982 posts
- 13. #PinkprintNIKA 10,6 B posts
- 14. Arctic Tundra 16,3 B posts
- 15. #2024MAMAAWARDS 214 B posts
- 16. #PITvsCLE 11,7 B posts
- 17. #TNFonPrime 6.124 posts
- 18. Russ 37,5 B posts
- 19. Myles Garrett 9.984 posts
- 20. AFC North 8.806 posts
Who to follow
-
Seongsu Park
@unpacker -
Bart
@bartblaze -
Joshua J. Drake
@jduck -
Xylitol
@Xylit0l -
REhints
@REhints -
James Forshaw
@tiraniddo -
Didier Stevens
@DidierStevens -
`Ivan
@Ivanlef0u -
Evilcry_
@Blackmond_ -
volatility
@volatility -
Paul Rascagnères
@r00tbsd -
Alex Ionescu
@aionescu -
Matt Nelson
@enigma0x3 -
Jonathan Salwan
@JonathanSalwan -
Ange
@angealbertini
Something went wrong.
Something went wrong.