Meet the writers contributing to Zenity Labs
Security Researcher at Zenity, specializing in low-code/no-code security. Focuses on identifying vulnerabilities within the Power Platform ecosystem and developing new attack vectors for low-code/no-code applications. Explores AI hacking techniques across platforms like Microsoft 365 Copilot, Copilot Studio, and ChatGPT. An active participant in Microsoft's bug bounty programs, with contributions acknowledged on their public security researcher recognition page. Main areas of interest include cloud security research, API, and web applications.
Hacker, builder and a cybersecurity practitioner. He is the co-founder and CTO of Zenity, the first application security company enabling enterprises to empower business users without paying for it in security incidents. He leads the OWASP LCNC Top 10, has a column on DarkReading, and delivers research, tools and talks regularly at top conferences including BlackHat, DEFCON and RSAC.
Software Engineering Manager with extensive experience in software development and cloud security. Currently leading an engineering team at Zenity, focused on helping to secure AI-driven and low-code/no-code apps. Previously, I held significant roles at Microsoft, where I served as a Senior Software Architect. I led the development of various security products, including those focused on data security, Azure IoT, and other cloud security solutions, significantly advancing Microsoft's security offerings.
Avishai Efrat is a senior security researcher specializing in low-code/no-code security at Zenity, and is enthusiastic about all aspects of security. His current research focuses on identifying vulnerabilities in organizations' Copilot M365, CoPilot Studio bots, and GenAI deployments, particularly on how attackers might discover and exploit these weaknesses. His experience spans across web security, anti-bot protection, OSINT, blockchain, and data engineering. Avishai has previously presented at BSidesTLV and Black Hat USA Arsenal.
Software Engineering Manager eager about technology science security research and software development. She has over 7 years of experience in cloud security starting at Azure where she led the development of security products with focus on Kubernetes, from static container image scanning (shift left) to runtime. Currently she is an engineering team lead at Zenity, where she joined the company at its very early stage as the first founding engineer, to help enterprise companies build their Copilots, AI-powered and low-code/no-code applications securely.
