Agent security
How agents turn untrusted instructions into actions, access, and compromise.
Speaking
I speak about attacks on AI agents and developer tools: how we found them, how the exploit works, and what defenders can do about it. The best version usually includes a live demo.
Themes
How agents turn untrusted instructions into actions, access, and compromise.
Following an attack from the prompt to code execution and infrastructure.
Plugins, developer tooling, and trust decisions that quietly expand an attack surface.
Labs and CTFs where participants trace the exploit instead of only hearing about it.
Selected appearances
Hands-on lab
OWASP Global AppSec EU · Vienna, Austria
Talk
OWASP Global AppSec EU · Barcelona, Spain
Talk
RSAC Conference · San Francisco, United States