An exposed WP-SHELLSTORM server revealed tools, logs, cloud credentials, and thousands of webshells used in a large website ...
In 2025, nearly 3 in 10 security professionals thought that fully autonomous AI systems could satisfy their companies' security-testing needs. But after a year of testing and experimentation, that ...
A previously undocumented Windows backdoor is silently running inside corporate networks across the insurance, education, IT, and professional services sectors — and your endpoint security software is ...
Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The "critical exploitable pattern" has ...
An AI terminal that thinks, adapts, and executes — turning natural language objectives into complete penetration test campaigns.
End-to-end deep reinforcement learning platform for Atari Breakout. Implements DQN, Double DQN, Dueling Networks, and Prioritized Experience Replay with side-by-side agent comparison, live inference, ...
This research is part of a joint initiative between the Cloud Security Alliance (CSA) and OWASP AI Exchange, building upon the previously published Agentic AI Red Teaming Guide. The objective of this ...
Python based backdoor that uses Gmail to exfiltrate data as an e-mail attachment. This RAT will help someone during red team engagements to backdoor any Windows machines. It tracks the user activity ...