March 1, 2026
The Interception Layer: A Terrible Idea That Might Actually Work
A middleware architecture for intercepting, anonymizing, and logging all data between autonomous AI agents and frontier LLMs.
Blog
Writing.
Technical articles and research write-ups. New posts publish here first, with older external writing linked below.
February 28, 2026
Your Autonomous Pentest Agent Might Be the Biggest Vulnerability in Your Network
AI agents with root access, no NDA, no background check, and no clue where your data ends up. Why autonomous pentest platforms are a compliance and security nightmare.
July 15, 2025
Taming the Beast — Prompt Engineering and Agent Guardrails
Part 2 of the MITRE ATT&CK agent series — prompt engineering techniques, chain-of-evidence validation, and fixing infinite loops.
July 15, 2025
I Attempted to Build an Agentic AI... And It Immediately Got Stuck in a Loop
Part 1 of building a MITRE ATT&CK mapping agent crew — architecture, RAG pipeline, and the first spectacular failures.
June 23, 2025
Bring Your Own Fix — Mr.D0x inspired variation of yet another "fix" attack
A downloadfix PoC using Service Workers to simulate failed downloads and trick users into running a "repair tool."
April 30, 2025
Sorry if it's hard to catch my vibe — Building the Dumbest (Yet Smartest?) C2 in Existence
How well can GenAI deal with new trends? Building a minimalist C2 with dynamic LLM-assisted capability generation via MCP.
August 25, 2021
%appdata% is a mistake — Introducing Invoke-DLLClone
Combining DLL metadata cloning, export table copying, and fake code-signing into a single PowerShell workflow for DLL hijacking operations.
August 5, 2021
A pinch of XLL and a splash of Rust has the potential to be a sharp combination
Emulating the Buer Loader threat using Rust for reconnaissance and a C# XLL dropper — from zero Rust experience to a working PoC.
June 16, 2021
Click your shortcut and... you got pwned
Introducing LnkGen, a GUI tool for crafting malicious LNK shortcut files with bamboozle mode, alternate data streams, and expert options.
December 21, 2020
A tale of .NET assemblies, cobalt strike size constraints, and reflection
Exploring how reflection and AppDomain.AssemblyResolve can bypass Cobalt Strike's 1MB execute-assembly limit by loading .NET dependencies at runtime.
Archive
External writing
Published on NVISO Labs and other platforms.
SANS Blog
A Decade of Security Assessments: Security Issues That Refuse to Die
Recurring security issues observed over a decade of assessments — the problems that keep coming back.
Neuvik
Using GenAI to Encode Malware and Bypass EDR
Exploring how generative AI can be used to encode malware payloads and evade endpoint detection.
Neuvik
The Tale of Privilege Escalation vs the Unstartable Service
Technical case study on a privilege escalation finding involving a service that wouldn't start.
TrustedSec
A Comprehensive Guide on Relaying Anno 2022
In-depth guide covering modern NTLM relay attack techniques and mitigations.
NVISO Labs
Tap Tap, Is This Thing On? Creating a Notification Service for Cobalt Strike
Building a notification service to alert operators when new beacons check in on Cobalt Strike.
NVISO Labs
I Solemnly Swear I Am Up to No Good: Introducing the Marauders Map
Introducing a tool for mapping out attack paths and visualizing offensive operations.
SCYTHE
Using SCYTHE Payload as Shellcode
Walkthrough on converting SCYTHE payloads into shellcode for use in custom loaders.
NVISO Labs
The Return of the Spoof Part 1: Parent Process ID Spoofing
Techniques for spoofing parent process IDs to evade detection during offensive operations.
NVISO Labs
Unmanaged File Searching with FileSearcher.exe
Using an unmanaged .NET file searcher to locate sensitive files during red team engagements.