Your company is rushing to build product features that use AI. How do you do that securely?. There are MANY ways things can go wrong. 🚨 @ramimacisabird's deep dive is BY FAR the best guide I've seen 🚨. Learn the latest attacks and defenses in one 🧵.

🛠️ Two JAMF Security Tools.𝐉𝐚𝐦𝐟𝐇𝐨𝐮𝐧𝐝 - Ingest JAMF attack paths into BloodHound.𝐄𝐯𝐞 - A JAMF exploitation toolkit. 1️⃣ JamfHound by @SpecterOps . A Python tool that collects and identifies attack paths in Jamf Pro tenants by analyzing object permissions and outputting

🔥 𝐀𝐏𝐓 𝐃𝐨𝐰𝐧 - 𝐓𝐡𝐞 𝐍𝐨𝐫𝐭𝐡 𝐊𝐨𝐫𝐞𝐚 𝐅𝐢𝐥𝐞𝐬.New Phrack article analyzing files from the computer of a North Korean hacker. Plus a script to scan your Gmail to see if you've interacted with NK IT workers. The article discusses tools, techniques, and targets

☁️ Using AWS tags to enumerate cloud resources.Bleon Proko on how attackers can use tags to enumerate AWS resources with minimal permissions, avoiding detection. And a tool release: 𝐓𝐚𝐠𝐍𝐚𝐛𝐈𝐭. TagNabIt is a tool that exploits the fact that tag-related API calls can reveal

Your cloud spend is a treasure chest waiting to be opened. Cut waste. Optimize usage. Unlock business value with 321 Gang!.

☁️ 𝐀𝐖𝐒 𝐢𝐧 2025: 𝐓𝐡𝐞 𝐒𝐭𝐮𝐟𝐟 𝐘𝐨𝐮 𝐓𝐡𝐢𝐧𝐤 𝐘𝐨𝐮 𝐊𝐧𝐨𝐰 𝐓𝐡𝐚𝐭'𝐬 𝐍𝐨𝐰 𝐖𝐫𝐨𝐧𝐠.Corey Quinn shares a bunch of ways AWS services have changed over the years across EC2, S3, Networking, Lambda, DynamoDB, Authentication, . Tons of great stuff in the post,

📊 𝐂𝐨𝐬𝐭 𝐨𝐟 𝐚 𝐃𝐚𝐭𝐚 𝐁𝐫𝐞𝐚𝐜𝐡 𝐑𝐞𝐩𝐨𝐫𝐭 2025: 𝐓𝐡𝐞 𝐀𝐈 𝐎𝐯𝐞𝐫𝐬𝐢𝐠𝐡𝐭 𝐆𝐚𝐩.31 page report from IBM based on 600 organizations impacted by data breaches between March 2024 and February 2025. Global average cost of a data breach: $4.44M. Added breach cost

📚 tl;dr sec 293 . 🤖 MCP Security, .☁️ AWS Enumeration, .🛡️ North Korean Hacker's Files Leaked. various write-ups on vulnerabilities in MCP servers!.

Keep up with security research in 7min/week:. 📺 Talks .🛠️ Tools and Blog posts.🧪 Research Projects . Join 90,000+ security professionals: Follow me @clintgibler for more!.

📢 Sponsor: Thousands of MCP servers are already live, but most security teams don’t have a clear strategy yet. Download this practical guide to MCP for security teams.

Putting EDRs in Their Place: Killing and Silencing EDR Agents Like an Adversary.@defcon workshop by Ryan Chapman and Aaron Rosenmund. Hands-on labs in a VM, pre-loaded tools, samples, & EDR emulator, covering:. Topics:. 🔍 Investigate a live EDR agent: discover its hooks, logs,

😈 ChromeAlone - Transform Chromium browsers into a C2 Implant. A la Cobalt Strike or Meterpreter. @defcon talk and tool release by @praetorianlabs' Michael Weber. ChromeAlone contains a number of out of the box components, including:. - A malicious Chrome extension that can

Abstract and slides links: GitHub:

How @Google handles insider risk. FACADE: High-Precision Insider Threat Detection Using Contrastive Learning.Black Hat slides + OSS tool release. Neat talk by Alex Kantchelian, Elie Bursztein, Casper Neo et al on Google’s internal AI system for detecting malicious insiders.

🚨New survey reveals minimum tariff concerns amid growing economic momentum. A new nationwide August survey of America’s Main Street small businesses revealed muted concerns about the @POTUS Administration’s tariff actions, as business owners prepare for coming growth.

3 Black Hat talks on applying AI to SAST. Here's what they covered (+ links to abstracts/slides). 1️⃣ More Flows, More Bugs: Empowering SAST with LLMs and Customized DFA. Using LLMs to automatically identify sources and sinks in open source frameworks, which allowed CodeQL to

Keep up with security research in 7min/week:. 📺 Talks .🛠️ Tools and Blog posts .🧪 Research projects. Join 90,000+ security professionals: Follow me @clintgibler for more!.

📢 Sponsor: MFA is essential but not enough. Attackers are bypassing it with Business Email Compromise and social engineering. @MaterialSec adds detection and response after login to Google Workspace: visibility, policy enforcement, and proactive remediation. Learn more →

📚 tl;dr sec 292. 🧑🏻‍💻 HTTP/1.1 must die, AI + SAST.🛡️ Google's Insider Threat Detection Tool.🚨 More interesting talks and/or tools from Hacker Summer Camp .

RT @PardonMyTake: Tuesday night max woke Big Cat up with a flashlight at 2am because he thought we were going to get sued. @forthepeople ht….

RT @mattjay: We tried to recreate an old photo. But just happy to hang with legends either way. @clintgibler @Jhaddix @rez0__ @DanielMiess….

Google (@Google) shares initial results from running their AI-based "Deep Sleep" vulnerability finding system powered by Gemini at scale. 20 vulnerabilities across imagemagick, ffmpeg, redis, QuickJS, and more.

Security products make you safer. right? 😅 . DEF CON: Zero Trust, Total Bust - Breaking into 1000s of cloud-based VPNs.Critical bugs in Zero Trust solutions from Zscaler, Netskope, and Check Point. DEF CON 2025 talk by AmberWolf’s David Cash and Rich W. They discuss the