Video wird geladen...

Video konnte nicht geladen werden

Zur Startseite

🔥Arbitrary Code Execution in AWS Kiro with Indirect Prompt Injection Multiple ways actually... 1) Write to settings.json to put Kiro into YOLO mode by adding: "kiroAgent.trustedCommands": ["*"] -> immediate arbitrary OS command execution without user approval 2) Write to kiro's mcp.json file to add a fake mcp server that...

wunderwuzzi23's profile picture

Johann Rehberger

8,101 subscribers

12,632 Aufrufe • vor 9 Monaten •via X (Twitter)

LIVE

Anya Rossi• Live Now

Private livecam show

0 Kommentare

Keine Kommentare verfügbar

Kommentare vom Original-Post werden hier angezeigt

Ähnliche Videos

💥 Remote Code Execution in GitHub Copilot (CVE-2025-53773) 👉 Prompt injection exploit writes to Copilot config file and puts it into YOLO mode, then we get immediate RCE 🔥 Bypasses all user approvals 🛡️ Patch is out today. Update before someone else does it for you
0:32

💥 Remote Code Execution in GitHub Copilot (CVE-2025-53773) 👉 Prompt injection exploit writes to Copilot config file and puts it into YOLO mode, then we get immediate RCE 🔥 Bypasses all user approvals 🛡️ Patch is out today. Update before someone else does it for you

Johann Rehberger

117,494 Aufrufe • vor 9 Monaten

today, on the DL, Notion released WORKERS. workers are a generic code execution environment that let you build interfaces within Notion the first interface we're exposing is the ability to make your own custom agent tools you can now make a tool for a custom agent that executes arbitrary code... and if you can execute arbitrary code, you can do pretty much anything!
10:40

today, on the DL, Notion released WORKERS. workers are a generic code execution environment that let you build interfaces within Notion the first interface we're exposing is the ability to make your own custom agent tools you can now make a tool for a custom agent that executes arbitrary code... and if you can execute arbitrary code, you can do pretty much anything!

Sam Catania

81,830 Aufrufe • vor 3 Monaten

PS5 (latest firmware) PoC for mast1c0re vulnerabilities. Arbitrary PS2 code execution and native PS5 ROP chain execution. Technical details on CTurt's blog post:
2:15

PS5 (latest firmware) PoC for mast1c0re vulnerabilities. Arbitrary PS2 code execution and native PS5 ROP chain execution. Technical details on CTurt's blog post:

McCaulay

292,611 Aufrufe • vor 3 Jahren

Get started with your Kiro access code using these 3 steps: 1. Update Kiro: Cmd+Shift+P (Ctrl+Shift+P on Windows), type "Kiro: Check for Updates", restart 2. Sign in (GitHub, Google, AWS Builder ID) 3. Enter your access code Remember: Updating first prevents access code errors and gets you to your first project faster. What spec-driven project are you excited to start? 👇 #KiroDotDev #DevTips #SpecDrivenDev
0:36

Get started with your Kiro access code using these 3 steps: 1. Update Kiro: Cmd+Shift+P (Ctrl+Shift+P on Windows), type "Kiro: Check for Updates", restart 2. Sign in (GitHub, Google, AWS Builder ID) 3. Enter your access code Remember: Updating first prevents access code errors and gets you to your first project faster. What spec-driven project are you excited to start? 👇 #KiroDotDev #DevTips #SpecDrivenDev

Kiro

10,596 Aufrufe • vor 10 Monaten

🚨CVE-2025-8088 PoC: WinRAR for Windows path traversal allows arbitrary code execution via crafted archives GitHub PoC: Video Credit: Advisory: CVSS: 8.4
0:45

🚨CVE-2025-8088 PoC: WinRAR for Windows path traversal allows arbitrary code execution via crafted archives GitHub PoC: Video Credit: Advisory: CVSS: 8.4

Dark Web Informer

24,628 Aufrufe • vor 7 Monaten

Code Execution If you ask Grok to generate code, you can quickly see how it runs in a “preview” tab. You can preview HTML snippets, run Python, C++, Javascript, Typescript and bash scripts.
0:24

Code Execution If you ask Grok to generate code, you can quickly see how it runs in a “preview” tab. You can preview HTML snippets, run Python, C++, Javascript, Typescript and bash scripts.

Grok

560,250 Aufrufe • vor 1 Jahr

Kiro is generally available 👻 Specs made ‘planning first’ the default for AI assisted dev. Now Kiro IDE adds property based tests to check if your code actually matches your Spec. Real signals, not vibes. Plus a new Kiro CLI and full team support through AWS IAM Identity Center. Get started today 👉
0:52

Kiro is generally available 👻 Specs made ‘planning first’ the default for AI assisted dev. Now Kiro IDE adds property based tests to check if your code actually matches your Spec. Real signals, not vibes. Plus a new Kiro CLI and full team support through AWS IAM Identity Center. Get started today 👉

Kiro

75,064 Aufrufe • vor 6 Monaten

Ready to level up your dev game? The Code with Kiro Hackathon comes with $100K in prizes and one serious AI sidekick 👻 Kiro works alongside you from spec to prod. You dream it, Kiro helps you build it Register at #KiroDotDev #CodewithKiro #Hackathon
1:10

Ready to level up your dev game? The Code with Kiro Hackathon comes with $100K in prizes and one serious AI sidekick 👻 Kiro works alongside you from spec to prod. You dream it, Kiro helps you build it Register at #KiroDotDev #CodewithKiro #Hackathon

Kiro

27,920 Aufrufe • vor 10 Monaten

Some IDA MCP servers can be tricked into executing arbitrary code directly from the malware sample
0:55

Some IDA MCP servers can be tricked into executing arbitrary code directly from the malware sample

jro

85,437 Aufrufe • vor 1 Jahr

Run Python with the Gemini API. Nikita Namjoshi shares how to use the Code Execution tool in AI Studio to solve math problems, perform data analysis, and use code-based reasoning.
4:48

Run Python with the Gemini API. Nikita Namjoshi shares how to use the Code Execution tool in AI Studio to solve math problems, perform data analysis, and use code-based reasoning.

Google AI Developers

16,481 Aufrufe • vor 6 Monaten

You can now push what you’re building in Claude Code directly into Figma. With the latest updates to the Figma MCP server, build a working prototype in code, then send it to a Figma canvas to explore multiple versions.
0:30

You can now push what you’re building in Claude Code directly into Figma. With the latest updates to the Figma MCP server, build a working prototype in code, then send it to a Figma canvas to explore multiple versions.

Claude

4,305,541 Aufrufe • vor 3 Monaten

🔄 Tired of endless AI coding loops? 😕 Introducing Kiro with spec driven development! 💡 Instead of immediate code generation, with Kiro you can analyze requirements FIRST, creating specs you can review before coding. 👉 Learn more:
0:50

🔄 Tired of endless AI coding loops? 😕 Introducing Kiro with spec driven development! 💡 Instead of immediate code generation, with Kiro you can analyze requirements FIRST, creating specs you can review before coding. 👉 Learn more:

Kiro

15,241 Aufrufe • vor 10 Monaten

‼️CVE-2026-0740 - Ninja Forms File Uploads up to v3.3.26 - Unauthenticated Arbitrary File Upload PoC:
5:23

‼️CVE-2026-0740 - Ninja Forms File Uploads up to v3.3.26 - Unauthenticated Arbitrary File Upload PoC:

Dark Web Informer

24,181 Aufrufe • vor 1 Monat

Did you know that Claude Code can use the browser to QA its own work? 1. Run `claude mcp add playwright -- npx -y @playwright/mcp@latest` 2. Tell Claude where your app is running, e.g localhost:8000 3. Now Claude can click and type to make sure its code is actually working!
1:20

Did you know that Claude Code can use the browser to QA its own work? 1. Run `claude mcp add playwright -- npx -y @playwright/mcp@latest` 2. Tell Claude where your app is running, e.g localhost:8000 3. Now Claude can click and type to make sure its code is actually working!

Sergey Karayev

107,272 Aufrufe • vor 10 Monaten

Seriously though, why is there something borderline psychoactive about this specific set of motifs? Why pools? Why no windows? Why the pastel colours? It feels suspiciously like an arbitrary code execution exploit on the human mind.
1:00

Seriously though, why is there something borderline psychoactive about this specific set of motifs? Why pools? Why no windows? Why the pastel colours? It feels suspiciously like an arbitrary code execution exploit on the human mind.

Henry Shevlin

3,524,722 Aufrufe • vor 14 Tagen

Pain of Punjab sikhs💔 From 1984 to 1995 the Indian government ordered operations that led to the arbitrary detention, torture, extrajudicial execution, and enforced disappearance of thousands of Sikhs.
1:14

Pain of Punjab sikhs💔 From 1984 to 1995 the Indian government ordered operations that led to the arbitrary detention, torture, extrajudicial execution, and enforced disappearance of thousands of Sikhs.

Alizay Khan

14,127 Aufrufe • vor 1 Jahr

CODE EXECUTION IN CANVAS🎨 Canvas becomes an automated SWE and a data scientist. Search for API docs, ask the model to write code and execute, get the plot!
0:21

CODE EXECUTION IN CANVAS🎨 Canvas becomes an automated SWE and a data scientist. Search for API docs, ask the model to write code and execute, get the plot!

Karina Nguyen

46,579 Aufrufe • vor 1 Jahr

Blind file read to RCE in PHP - without access to files, we need to build reliable arbitrary read primitive from the ISO-2022-CN-EXT overflow (CVE-2024-2961) #CNEXT
2:17

Blind file read to RCE in PHP - without access to files, we need to build reliable arbitrary read primitive from the ISO-2022-CN-EXT overflow (CVE-2024-2961) #CNEXT

Charles Fol

34,221 Aufrufe • vor 1 Jahr

6. Final Step: It is necessary to combine all previously generated scripts Prompt: "Combine all the code you wrote above into one. Also, write instructions on how to run the script" Be sure to compare my code with yours👇
1:15

6. Final Step: It is necessary to combine all previously generated scripts Prompt: "Combine all the code you wrote above into one. Also, write instructions on how to run the script" Be sure to compare my code with yours👇

Qmo

20,027 Aufrufe • vor 1 Jahr