Zenity Labs
Research, tools and talks about building and breaking copilots and no-code apps
Connect
A blog version for the talk presented at BlueHat 2024
Links, demos, tools and slides for BlueHat 2024
Internet browsing for AI agents leads to 0click compromise but these mitigations can help
Guiding threat simulation and defense for Copilots and Agents
Reviewing Microsoft's Fix for the 'All You Need Is Guest' DLP Bypass
New Attack Vectors Discovered for Initial Access and Post-Compromise
We Need To Address Promptware Now
Links, source code, tools and slides for BlackHat USA 2024