Uncategorized Archives - Page 4 of 5 - Include Security Research Blog

Improving LLM Security Against Prompt Injection: AppSec Guidance For Pentesters and Developers

February 8, 2024January 23, 2024 — IncludeSec

Many developers are leveraging LLMs without taking advantage of system roles, making their applications vulnerable by design. Security researches may be missing severe issues with prompt design and implementation by not testing the LLM APIs and focusing on the web user interfaces of LLM providers. Our latest blog post provides prescriptive advice to LLM application developers to help them minimize the security risk of their applications. It also helps security researchers focus on the issues that are important to developers of LLM applications. This post is the first in a series of two, where in future posts we’ll cover the concept of attention in transformer models.

Think that having your lawyer engage your penetration testing consultancy will help you? Think again.

November 3, 2024October 26, 2023 — IncludeSec

Guest Post: Neil Jacobs (deals with cyber law stuff) Many companies engage their penetration testing(pentesting) companies through their lawyers, i.e., the lawyers themselves actually engage the pentester (and not the client), and the lawyers provide the pentest results to the client usually via a report. The thinking behind this is that doing so will “cloak” … Read more

Reverse Engineering Windows Printer Drivers (Part 2)

April 6, 2023August 30, 2022 — Ayaz Mammadov & Nick Fox

In our blog last post (Part 1), we discussed how you can find and extract drivers from executables and other packages and the general methodology for confirming that drivers are loaded and ready. We also highlighted the Windows driver architecture. In this post, we’ll focus on an introduction to the driver architecture, basics of reverse … Read more

Reverse Engineering Windows Printer Drivers (Part 1)

April 6, 2023August 5, 2022 — Ayaz Mammadov & Nick Fox

Note: This is Part 1 in a series of posts discussing security analysis of printer drivers extracted and installed from public resources. This part explains how we located publicly available drivers distributed by WeWork and conducted initial analysis. Part 2 come shortly after and will cover our exploration with in-depth technical details about how Windows … Read more

Working with vendors to “fix” unfixable vulnerabilities: Netgear BR200/BR500

May 19, 2022May 19, 2022 — IncludeSec

By Erik Cabetas In the summer of 2021 Joel St. John was hacking on some routers and printers on his IncludeSec research time. He reported security vulnerabilities to Netgear in their BR200 router line (branded as “Netgear Insight Managed Business Router”). During subsequent internal analysis by Netgear, they found that the BR500 line was also … Read more