Most API security tools test what you click on. Hadrian tests what attackers exploit. 🛡️

We just open-sourced our API authorization testing framework github.com/praetorian-inc/hadrian

Full breakdown: www.praetorian.com/blog/hadrian...

#APISecurity #AppSec #OpenSource #TheGuardPlatform #Praetorian

🔓 CVE-2025-33073 revives NTLM reflection attacks. Any domain user can hit SYSTEM on unpatched hosts without SMB signing.

Chain with unconstrained delegation → full domain compromise.

www.praetorian.com/blog/cve-202...

#offensivesecurity #activedirectory #theguardplatform #praetorian

Julius v0.2.0 — 33 to 63 probes 🔍

Now detecting AWS Bedrock, Azure OpenAI, Vertex AI, SGLang, TensorRT-LLM, PrivateGPT, RAGFlow and more.

Open source. Zero config. Go find the shadow AI on your network.

www.praetorian.com/blog/julius-...

#AIsecurity #opensource #theguardplatform

Carter Ross from our team walks through what we've actually built, what we've learned, and why most detection stacks weren't designed for this reality.

It's worth the read! ➡️ buff.ly/Q6zYuSQ

#Praetorian #OffensiveSecurity #TheGuardPlatform

HttpOnly blocks document.cookie — but endpoints reflecting cookies in the response body bypass it entirely. 🔒

Our team chained XSS + GhostScript injection for full RCE. No zero-days.

📖 www.praetorian.com/blog/httponl...

#OffensiveSecurity #AppSec #TheGuardPlatform #Praetorian