Zero-days make headlines, but your biggest risk might be in your logs. We’ve found API keys and credentials hiding in tools like Datadog and Kibana, a quiet goldmine for attackers (and red teams). Read the blog:

The annual penetration test was designed for a world that no longer exists; a time when attackers were hobbyists and AI was science fiction. Threats evolve. Security should too. Learn more about Chariot continuous offensive security -

While security teams focused on Azure device code attacks, this GitHub variant has been flying under the radar, exploiting trusted authentication processes that developers use every day. See the full attack chain in this 30-min on-demand session.

RT @rad9800: When we got access to Git[Hub,Lab] on Red Teams - it was almost always $$$. So it's pretty awesome to see a couple folk and f….

We've spent years researching and building tools for CICD security. Now, we're ready to knowledge dump at a 2-day hands-on training at Black Hat (Aug 2-3, 4-5):. Learn more:

🚨 GitPhish is now open source. Our GitHub Device Code Phishing automation tool is live:. 🕒 Dynamic device code generation .🚀 Auto GitHub Pages deployment.💻 CLI + web dashboard .🎯 Multi-target capability. Learn more via our latest blog:

RT @harmj0y: One of the fun things we did for the Nemesis 2.0 release was heavily optimizing our usage of @praetorianlabs' Nosey Parker.….

The @lockstepvc team are bringing back their annual #BlackHat party in Vegas on Weds, Aug 6th! Food, drinks, DJ, and good people - including our CEO, Nathan Sportsman! . Space is limited - register now to 🔒 in your spot: #BlackHat2025 #BHUSA

🚨 New attack disclosed: GitHub Device Code Phishing. John, Matt, and Mason reveal how they've been using this technique to compromise F500 orgs with high success rates. 📖 Blog covers methodology, red team case studies & detection strategies .

Penetration testing is a lot like brushing your teeth. Annually is . not enough. This is why we developed Chariot.

Security teams don’t need more tools. They need clarity. Chariot proves what’s real and exploitable 🐴

Last week's @thotcon crowds were all smiles. Thanks to everyone who came out for any or all of our three sessions. See you next year 😄

You wouldn't download a vape. but if you're a Prae engineer in front of a @HackSpaceCon then you might reverse engineer one in a bar 🤔. Our latest blog breaks down the entire journey - from initial teardown to discovering the surprising architecture inside consumer vaping.

RT @4JMAN: had a wonderful time at @HackSpaceCon a few weeks ago :)

.@thotcon , we're comin' for ya!!!. Attendees will get the chance to catch a (final) encore of our training, "Breaking the Bot: GenAI Web App Attack Surface & Exploitation.". We'll also be debuting a never-before-seen lateral movement technique for domain-joined Linux machines.

Our @HackSpaceCon takeover was a success 🚀🚀🚀🚀🚀🚀. Big thanks to all of our workshop participants and presentation attendees!. Be sure to follow our in-person events calendar to find opportunities to connect with us in the future:

Praetorian research found RCE & code smuggling vulns in Node.js CI/CD (GitHub/Jenkins). If it happened there, are your pipelines secure? Kudos Node.js for the swift fix!. Full details: #AppSec #RSAC #RSAC2025.

That DICOM vulnerability allowing code in medical images? It's not just Windows. Our ELFDICOM PoC extends the threat to Linux systems in healthcare via polyglot (ELF+DICOM) malware. Novel attack path analysis:

RT @MiRCyberRecruit: Skills can be taught. Tools change. Principles? That's what holds @praetorianlabs together. Our culture is built on th….

⭐️ Strong showing at @FIRSTdotOrg's #VulnCon for Praetorian's Director of OffSec L&D session - Breaking the Bot: GenAI Web App Attack Surface & Exploitation. Don't fret, you can catch Ken IRL at plenty of events in the not-so-distant future. Check it :