- I'm a senior security researcher specializing in AI and low-code/no-code security at Zenity, and enthusiastic about all aspects of security.
- My current work is focusing on identifying vulnerabilities in organizations' Copilot M365, CoPilot Studio bots, and GenAI deployments and my experience spans across web security, anti-bot protection, OSINT, blockchain, and data engineering.
- I'm one of the main contributors of PowerPwn, using this user too (supporting an OS security tool has always been a dream of mine). I'm also the creator of the Copilot Studio Hunter module and co-creator of the Power Pages module in the tool.
- I also contribute to the GenAI attack matrix at ttps.ai (some of it has also been added to MITRE ATLAS).
- I've previously presented at BSidesTLV, Black Hat USA Arsenal and SecTor.
- Copilot Studio discovery and data leaks
- Power Platform DLP bypasses
- Online dating services data leak #1
- Online dating services data leak #2
- BH 24 briefing (contributor)
- BH 24 Arsenal (contributor & presenter)
- SecTor 24 briefing (contributor & presenter)
- SecTor 24 Arsenal (contributor & presenter)
- Zenity Research blog