正在加载视频...

视频加载失败

返回首页

🔥Arbitrary Code Execution in AWS Kiro with Indirect Prompt Injection Multiple ways actually... 1) Write to settings.json to put Kiro into YOLO mode by adding: "kiroAgent.trustedCommands": ["*"] -> immediate arbitrary OS command execution without user approval 2) Write to kiro's mcp.json file to add a fake mcp server that...

wunderwuzzi23's profile picture

Johann Rehberger

8,101 subscribers

12,632 次观看 • 9 个月前 •via X (Twitter)

LIVE

Anya Rossi• Live Now

Private livecam show

0 条评论

暂无评论

原始帖子的评论将显示在这里

相关视频

💥 Remote Code Execution in GitHub Copilot (CVE-2025-53773) 👉 Prompt injection exploit writes to Copilot config file and puts it into YOLO mode, then we get immediate RCE 🔥 Bypasses all user approvals 🛡️ Patch is out today. Update before someone else does it for you
0:32

💥 Remote Code Execution in GitHub Copilot (CVE-2025-53773) 👉 Prompt injection exploit writes to Copilot config file and puts it into YOLO mode, then we get immediate RCE 🔥 Bypasses all user approvals 🛡️ Patch is out today. Update before someone else does it for you

Johann Rehberger

117,494 次观看 • 10 个月前

today, on the DL, Notion released WORKERS. workers are a generic code execution environment that let you build interfaces within Notion the first interface we're exposing is the ability to make your own custom agent tools you can now make a tool for a custom agent that executes arbitrary code... and if you can execute arbitrary code, you can do pretty much anything!
10:40

today, on the DL, Notion released WORKERS. workers are a generic code execution environment that let you build interfaces within Notion the first interface we're exposing is the ability to make your own custom agent tools you can now make a tool for a custom agent that executes arbitrary code... and if you can execute arbitrary code, you can do pretty much anything!

Sam Catania

81,830 次观看 • 3 个月前

PS5 (latest firmware) PoC for mast1c0re vulnerabilities. Arbitrary PS2 code execution and native PS5 ROP chain execution. Technical details on CTurt's blog post:
2:15

PS5 (latest firmware) PoC for mast1c0re vulnerabilities. Arbitrary PS2 code execution and native PS5 ROP chain execution. Technical details on CTurt's blog post:

McCaulay

292,611 次观看 • 3 年前

Get started with your Kiro access code using these 3 steps: 1. Update Kiro: Cmd+Shift+P (Ctrl+Shift+P on Windows), type "Kiro: Check for Updates", restart 2. Sign in (GitHub, Google, AWS Builder ID) 3. Enter your access code Remember: Updating first prevents access code errors and gets you to your first project faster. What spec-driven project are you excited to start? 👇 #KiroDotDev #DevTips #SpecDrivenDev
0:36

Get started with your Kiro access code using these 3 steps: 1. Update Kiro: Cmd+Shift+P (Ctrl+Shift+P on Windows), type "Kiro: Check for Updates", restart 2. Sign in (GitHub, Google, AWS Builder ID) 3. Enter your access code Remember: Updating first prevents access code errors and gets you to your first project faster. What spec-driven project are you excited to start? 👇 #KiroDotDev #DevTips #SpecDrivenDev

Kiro

10,596 次观看 • 10 个月前

🚨CVE-2025-8088 PoC: WinRAR for Windows path traversal allows arbitrary code execution via crafted archives GitHub PoC: Video Credit: Advisory: CVSS: 8.4
0:45

🚨CVE-2025-8088 PoC: WinRAR for Windows path traversal allows arbitrary code execution via crafted archives GitHub PoC: Video Credit: Advisory: CVSS: 8.4

Dark Web Informer

24,628 次观看 • 7 个月前

Code Execution If you ask Grok to generate code, you can quickly see how it runs in a “preview” tab. You can preview HTML snippets, run Python, C++, Javascript, Typescript and bash scripts.
0:24

Code Execution If you ask Grok to generate code, you can quickly see how it runs in a “preview” tab. You can preview HTML snippets, run Python, C++, Javascript, Typescript and bash scripts.

Grok

560,250 次观看 • 1 年前

Kiro is generally available 👻 Specs made ‘planning first’ the default for AI assisted dev. Now Kiro IDE adds property based tests to check if your code actually matches your Spec. Real signals, not vibes. Plus a new Kiro CLI and full team support through AWS IAM Identity Center. Get started today 👉
0:52

Kiro is generally available 👻 Specs made ‘planning first’ the default for AI assisted dev. Now Kiro IDE adds property based tests to check if your code actually matches your Spec. Real signals, not vibes. Plus a new Kiro CLI and full team support through AWS IAM Identity Center. Get started today 👉

Kiro

75,064 次观看 • 6 个月前

Ready to level up your dev game? The Code with Kiro Hackathon comes with $100K in prizes and one serious AI sidekick 👻 Kiro works alongside you from spec to prod. You dream it, Kiro helps you build it Register at #KiroDotDev #CodewithKiro #Hackathon
1:10

Ready to level up your dev game? The Code with Kiro Hackathon comes with $100K in prizes and one serious AI sidekick 👻 Kiro works alongside you from spec to prod. You dream it, Kiro helps you build it Register at #KiroDotDev #CodewithKiro #Hackathon

Kiro

27,920 次观看 • 11 个月前

Some IDA MCP servers can be tricked into executing arbitrary code directly from the malware sample
0:55

Some IDA MCP servers can be tricked into executing arbitrary code directly from the malware sample

jro

85,437 次观看 • 1 年前

Run Python with the Gemini API. Nikita Namjoshi shares how to use the Code Execution tool in AI Studio to solve math problems, perform data analysis, and use code-based reasoning.
4:48

Run Python with the Gemini API. Nikita Namjoshi shares how to use the Code Execution tool in AI Studio to solve math problems, perform data analysis, and use code-based reasoning.

Google AI Developers

16,481 次观看 • 6 个月前

You can now push what you’re building in Claude Code directly into Figma. With the latest updates to the Figma MCP server, build a working prototype in code, then send it to a Figma canvas to explore multiple versions.
0:30

You can now push what you’re building in Claude Code directly into Figma. With the latest updates to the Figma MCP server, build a working prototype in code, then send it to a Figma canvas to explore multiple versions.

Claude

4,305,690 次观看 • 3 个月前

🔄 Tired of endless AI coding loops? 😕 Introducing Kiro with spec driven development! 💡 Instead of immediate code generation, with Kiro you can analyze requirements FIRST, creating specs you can review before coding. 👉 Learn more:
0:50

🔄 Tired of endless AI coding loops? 😕 Introducing Kiro with spec driven development! 💡 Instead of immediate code generation, with Kiro you can analyze requirements FIRST, creating specs you can review before coding. 👉 Learn more:

Kiro

15,241 次观看 • 10 个月前

‼️CVE-2026-0740 - Ninja Forms File Uploads up to v3.3.26 - Unauthenticated Arbitrary File Upload PoC:
5:23

‼️CVE-2026-0740 - Ninja Forms File Uploads up to v3.3.26 - Unauthenticated Arbitrary File Upload PoC:

Dark Web Informer

24,181 次观看 • 1 个月前

Did you know that Claude Code can use the browser to QA its own work? 1. Run `claude mcp add playwright -- npx -y @playwright/mcp@latest` 2. Tell Claude where your app is running, e.g localhost:8000 3. Now Claude can click and type to make sure its code is actually working!
1:20

Did you know that Claude Code can use the browser to QA its own work? 1. Run `claude mcp add playwright -- npx -y @playwright/mcp@latest` 2. Tell Claude where your app is running, e.g localhost:8000 3. Now Claude can click and type to make sure its code is actually working!

Sergey Karayev

107,272 次观看 • 10 个月前

Pain of Punjab sikhs💔 From 1984 to 1995 the Indian government ordered operations that led to the arbitrary detention, torture, extrajudicial execution, and enforced disappearance of thousands of Sikhs.
1:14

Pain of Punjab sikhs💔 From 1984 to 1995 the Indian government ordered operations that led to the arbitrary detention, torture, extrajudicial execution, and enforced disappearance of thousands of Sikhs.

Alizay Khan

14,127 次观看 • 1 年前

Seriously though, why is there something borderline psychoactive about this specific set of motifs? Why pools? Why no windows? Why the pastel colours? It feels suspiciously like an arbitrary code execution exploit on the human mind.
1:00

Seriously though, why is there something borderline psychoactive about this specific set of motifs? Why pools? Why no windows? Why the pastel colours? It feels suspiciously like an arbitrary code execution exploit on the human mind.

Henry Shevlin

3,527,276 次观看 • 16 天前

CODE EXECUTION IN CANVAS🎨 Canvas becomes an automated SWE and a data scientist. Search for API docs, ask the model to write code and execute, get the plot!
0:21

CODE EXECUTION IN CANVAS🎨 Canvas becomes an automated SWE and a data scientist. Search for API docs, ask the model to write code and execute, get the plot!

Karina Nguyen

46,579 次观看 • 1 年前

Blind file read to RCE in PHP - without access to files, we need to build reliable arbitrary read primitive from the ISO-2022-CN-EXT overflow (CVE-2024-2961) #CNEXT
2:17

Blind file read to RCE in PHP - without access to files, we need to build reliable arbitrary read primitive from the ISO-2022-CN-EXT overflow (CVE-2024-2961) #CNEXT

Charles Fol

34,221 次观看 • 1 年前

6. Final Step: It is necessary to combine all previously generated scripts Prompt: "Combine all the code you wrote above into one. Also, write instructions on how to run the script" Be sure to compare my code with yours👇
1:15

6. Final Step: It is necessary to combine all previously generated scripts Prompt: "Combine all the code you wrote above into one. Also, write instructions on how to run the script" Be sure to compare my code with yours👇

Qmo

20,027 次观看 • 1 年前