AI security
Agents, developer tools, and infrastructure
~/security-research $
I'm Eilon Cohen, Head of Security Research at Pillar Security. I lead security research at Pillar Security. I find new attack paths in AI agents and developer tools, build the proof, and work with product and engineering teams on what to do next.
Selected work

A double-evaluation flaw in n8n Form nodes allowed attacker-controlled expressions to cross a public form boundary and reach unauthenticated shell execution.
Authors: Eilon Cohen
A cross-ecosystem study mapped how attackers use advertisements, fake extensions, cloned sites, and malicious packages to target users of popular AI development tools.
Authors: Eilon Cohen
Internet-facing honeypots exposed a coordinated supply chain that scanned, validated, and resold unauthorized access to LLM and Model Context Protocol infrastructure.
Authors: Eilon Cohen, Ariel Fogel
Malicious instructions placed in trusted Docker Hub metadata steered Ask Gordon into invoking internal tools and sending sensitive results to an attacker-controlled service.
Authors: Eilon CohenBeyond the findings
A good finding should change something. I work with product and engineering teams to turn the attack path into a test, a protection, or a better design. Working forward-deployed keeps that work tied to the systems people actually run. I also lead and mentor researchers doing the same kind of work.
Interests
Agents, developer tools, and infrastructure
An 8,000+ member technical community
Markets, businesses, and long-term conviction
Open financial systems and new coordination models