Quantified results, published advisories, and offensive research that defines the industry frontier.
Anonymized findings from real engagements demonstrating depth, rigor, and actual business impact.
Remote code execution via deserialization flaw chained with file upload bypass. Full server compromise achieved.
Server-side request forgery exploited to pivot into internal network and access sensitive configuration stores.
JWT validation flaw allowed complete authentication bypass across multi-tenant environment.
IDOR combined with broken access control allowed horizontal and vertical privilege escalation.
Prompt injection in customer-facing LLM agent led to internal data exfiltration and action execution.
Training data leakage through model inference endpoints exposed PII and proprietary business data.
Eresus Labs publishes original research, advisories, and intelligence to advance the state of offensive security.
Original research into emerging attack vectors and defensive techniques.
Detailed vulnerability advisories with technical analysis and mitigation guidance.
Coordinated disclosure of vulnerabilities discovered during research.
Research into LLM vulnerabilities, prompt injection, and AI supply chain risks.
Quarterly analysis of evolving attack surfaces across industries.
In-depth reports on systemic security issues affecting enterprise environments.