Security Blog | Praetorian praetorian.com

Exploiting LLM Write Primitives: System Prompt Extraction When Chat Output Is Locked Down

praetorian.com·18w

Where AI Systems Leak Data: A Lifecycle Review of Real Exposure Paths

praetorian.com·19w

Critical Advisory: Remote Code Execution in Next.js (CVE-2025-66478) with Working Exploit

praetorian.com·23w

CVE-2025-52493: When Password FieldsAren’t Enough – Client-Side SecretExposure in PagerDuty Cloud Runbook

praetorian.com·25w

How I Found the Worst ASP.NET Vulnerability — A $10K Bug (CVE-2025-55315)

praetorian.com·27w

Your Vulnerability Scanner Might Be Your Weakest Link

praetorian.com·34w

Domain Fronting is Dead. Long Live Domain Fronting!

praetorian.com·35w

The Security Time Capsule: Evolving Beyond Legacy Pen Testing

praetorian.com·36w

The Security Time Capsule: Evolving Beyond Legacy Pen Testing

praetorian.com·36w

OAuthSeeker: Leveraging OAuth Phishing for Initial Access and Lateral Movement on Red Team Engagements

praetorian.com·40w

Ghost Calls: Abusing Web Conferencing for Covert Command & Control (Part 2 of 2)

praetorian.com·41w

Ghost Calls: Abusing Web Conferencing for Covert Command & Control (Part 1 of 2)

praetorian.com·41w·Hacker News

Hunting for Secrets in Plain Sight: Leveraging Internal Logging and Monitoring Services

praetorian.com·42w

CI/CD Training from the Front Lines: Offensive Security at Black Hat

praetorian.com·45w

GitPhish: Automating Enterprise GitHub Device Code Phishing

praetorian.com·46w

Introducing: GitHub Device Code Phishing

praetorian.com·48w·Hacker News, Hacker News

Hardware Hacking a Nicotine Vape

praetorian.com·50w

Vulnerability researcher finds potential supply chain attack opportunity on node.js github repo

praetorian.com·55w·Hacker News, r/programming

ELFDICOM: PoC Malware Polyglot Exploiting Linux-Based Medical Devices

praetorian.com·57w

Improved Detection Signature for the K8s IngressNightmare Vuln

praetorian.com·59w·Hacker News

Log in to enable infinite scrolling