Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
GitHub

Conducting Internal Reconnaissance with BloodHound CE

Conducting Internal Reconnaissance with BloodHound CE Legal Notice: This skill is for authorized security testing and educational purposes only. Unauthorized use against systems you do not own or have ...
GitHub

Conducting Mobile App Penetration Test

Assessing mobile application resistance to reverse engineering, tampering, and runtime manipulation Do not use against mobile applications without written authorization from the application owner, for ...