Vulnerability Research
CVE-2026-34156: VM Sandbox Escape to RCE in NocoBase
Critical VM sandbox escape vulnerability (CVSS 9.9) in NocoBase enabling remote code execution. Full technical analysis, proof of concept, and disclosure timeline.
Articles
AI Security
I Asked an AI About Its Security Policies: It Gave Me the API Key
A simple prompt about security policies tricked an AI chatbot into leaking its API key. Real-world case study on AI deployment security failures.
AI Security
Breaking an AI-Powered Shell
Red teaming an AI-powered shell application — prompt injection, command injection, and sandbox escape techniques against LLM-integrated CLI tools.
AI Security
My C-AI/MLPen Exam Journey
Detailed walkthrough of the C-AI/MLPen certification exam — preparation strategy, exam format, key challenges, and practical tips for AI/ML penetration testing.
AI Security
Cross-Detector Inconsistency in AI Text Detection: A Benchmark Study with Hybrid Evasion Techniques
Research analyzing how AI text detection tools disagree when facing hybrid evasion techniques. Cross-detector benchmark with paraphrasing and stylistic manipulation.