// RESEARCH_ARCHIVES
12/29/2025
google-antigravity-data-exfiltration
An indirect prompt injection in an implementation blog can manipulate Antigravity to invoke a malicious browser subagent in order to steal c
Read more
12/29/2025
dont-kill-my-demon-havoc-for-adversary
Shell-code and multiple Agent, combined with Cobalt-strike malleable C2 Profile that is common with Chrome named pipe. Less popular compared
Read more
12/29/2025
red-teaming-python-based-application-19b
Server Side Template injection / SSTI with evasion on Python (Flask and Jinja2) based application, whiteBox Pentesting scenario. SSTI Exerci
Read more