Between Two Vulns

2024’s been a wild ride y'all, and we’re breaking it all down in this Between Two Vulns finale: 💥 OpenAI drops a $200/month GPT Pro plan—worth it or a cash grab? 💥 Anthropic tries to standardize agents with their Model Context Protocol. 💥 Google’s quantum chip solves problems that would take septillion years (and maybe proves the multiverse is real). Then Ethan walks us through exploiting Keras Lambda vulnerabilities, and we close with shoutouts to the huntrs who crushed it this year. 🏆

Between Two Vulns is BACK with your favorite hacker trio! Dan and Marcello dive into OpenAI Dev Day—coding with Canvas, “drunk” chatbots, and some spooky AI questions. Meanwhile, Ethan’s dropping insights from Protect AI’s October Vulnerability Report: RCEs, file path traversals, and more. If you’re here for AI hot takes, hacker humor, and a fresh vulnerability breakdown, you’re in the right spot.

In Episode 9 of Between Two Vulns, Dan and Marcello mix things up with a fresh new segment where Dan breaks down the top 3 things happening in AI and how they tie into AI security. Plus, we’re excited to introduce Ethan Silvas, our newest threat researcher at huntr!

🔥 Get ready, huntrs! 🔥 Dive into the July edition of "Between Two Vulns" with our dynamic duo, Dan and Marcello. This month, they're tearing into Protect AI's latest Vulnerability Report, exposing some pretty gnarly vulns. As you can clearly tell by our thumbnail, we're not messing around this month.

Join the dynamic duo, Dan and Marcello, as they not only discuss the latest vulnerabilities from Protect AI's June Vulnerability Report but also guide you through replicating them live on huntr.com. This month, we're introducing exclusive segments designed to enhance your hacking skills like never before.

Welcome to a wild RSA edition of "Between Two Vulns"! Join Dan and Marcello for a laugh-filled episode as they share their RSA Conference experiences and unpack critical vulnerabilities from Protect AI's May Vulnerability Report. We’re diving into a Remote Code Execution vulnerability in mintplex-labs/anything-llm and a Command Injection vulnerability in 'run_xtts_api_server' in parisneo/lollms-webui this episode.

The fact that we're covering 48 vulnerabilities this month is insane. Seriously, our community has been on fire, relentlessly submitting bugs on huntr. From remote code execution in PyTorch Serve to server-side template injections in BerriAI/litellm, we're covering it all.