Yujilik ​

Yujilik ​

[HackerNotes Ep. 152] GeminiJack and Agentic Security with Sasi Levi

[HackerNotes Ep. 152] GeminiJack and Agentic Security with Sasi Levi

In this episode we’re joined by Sasi Levi from Noma Security to talk about AI and Agentic Security. We also talk about ForcedLeak, a Google Vertex Bug, and debate if Prompt Injection is a real vuln.

Yujilik ​
Yujilik ​
[HackerNotes Ep. 150] ASP.NET MVC Patterns, Popping Oracle Identity, and Truly Lesser-known Subdomain Enumeration Techniques

[HackerNotes Ep. 150] ASP.NET MVC Patterns, Popping Oracle Identity, and Truly Lesser-known Subdomain Enumeration Techniques

In this episode: we're highlighting some cool news and research, but not before expressing our gratitude to the Hacker community. We are so thankful for you all!

Yujilik ​
Yujilik ​
[HackerNotes Ep. 148] MCP Hacking Guide

[HackerNotes Ep. 148] MCP Hacking Guide

In this episode: Justin gives us a crash course on Model Context Protocol.

Yujilik ​
Yujilik ​
[HackerNotes Ep. 146] Hacker Horror Stories

[HackerNotes Ep. 146] Hacker Horror Stories

In this episode, Justin, Joseph, and Brandyn sit down to celebrate the spooky season by swapping their scariest bug stories. From frightening fails and firings to hacks with chilling and critical consequences. Grab your flashlight and a blanket for this one!

Yujilik ​
Yujilik ​
[HackerNotes Ep. 144] Google’s Top AI Hackers: Busfactor and Monke

[HackerNotes Ep. 144] Google’s Top AI Hackers: Busfactor and Monke

In this episode: Joseph is joined by Vitor Falcão and Ciarán Cotter to discuss their success at the recent Google LHE in Mexico, as well as their journey and routines in full-time hacking.

Yujilik ​
Yujilik ​
[HackerNotes Ep. 142] gr3pme's full-time hunting journey update, insane AI research, and some light news

[HackerNotes Ep. 142] gr3pme's full-time hunting journey update, insane AI research, and some light news

In this episode, Rez0 and Gr3pme join forces to discuss Websocket research, Meta’s $111750 Bug, PROMISQROUTE, and the opportunities afforded by going full time in Bug Bounty.

Yujilik ​
Yujilik ​
[HackerNotes Ep. 140] Crit Research Lab Update & Client-Side Tricks Galore

[HackerNotes Ep. 140] Crit Research Lab Update & Client-Side Tricks Galore

In this episode: Justin and Joseph give an update from the Crit Research Lab, as well as some writeups on postMessage vulnerabilities, Cookie Chaos, and more.

Yujilik ​
Yujilik ​
[HackerNotes Ep. 138] Caido Tools and Workflows

[HackerNotes Ep. 138] Caido Tools and Workflows

In this episode: Rhyno talks about Caido tools, workflows and gives us a list of some of the Caido tools that have caught his interest + how he’s using them to find bugs.

Yujilik ​
Yujilik ​
[HackerNotes Ep. 136] Hacking Cluely, AI Prod Sec, and How To Not Get Sued with Jack Cable

[HackerNotes Ep. 136] Hacking Cluely, AI Prod Sec, and How To Not Get Sued with Jack Cable

In episode 136: Joseph Thacker sits down with Jack Cable to get the scoop on a significant bug in Cluely’s desktop application, as well as the resulting drama. They also talk about Jack’s background in government cybersecurity initiatives, and the legal risks faced by security researchers.

Yujilik ​
Yujilik ​
[HackerNotes Ep. 134] XBOW - AI Hacking Agent and Human in the Loop with Diego Jurado

[HackerNotes Ep. 134] XBOW - AI Hacking Agent and Human in the Loop with Diego Jurado

In this episode we’re joined by Diego Jurado to give us the scoop on XBOW. We cover a little about its architecture and approach to hunting, the challenges with hallucinations, and the future of AI in the BB landscape. Diego also shares some of his own hacking journey and successes in the Ambassador World cup.

Yujilik ​
Yujilik ​