Introduction As a web hacking enthusiast, I typically focus on web-based CTF challenges. However, due to the lack of such challenges in DEFCON Quals 2025, I decided to tackle the Memory Bank challenge, whic...
Security research notebook
Writeups, exploit chains, AI security, and CTF notes.
@devploit / blog
Real-world infosec, no hype. Practical offensive security research, concrete lessons, and postmortems that prioritize signal over polish.
// notebook status
3 Published writeups
2 Research tracks
11 Indexed tags
Focused notes from offensive security work, competitions, and AI security research.
// recent research
Operational notes from the field.
Cracking Gandalf: Conquering the Lakera AI Security Challenge
Gandalf by Lakera is an engaging and educational online challenge designed to test and improve your skills in manipulating large language models (LLMs). Named after the wise wizard from “The Lord of the Ring...
Hacking the Mind of AI: Pentesting Large Language Models
Pentesting Large Language Models (LLMs) is crucial to ensure they operate securely and do not expose vulnerabilities that can be exploited by attackers. Based on OWASP’s Top 10 vulnerabilities for LLM applic...
- 1
- 1 / 1