Recent research initiatives, technical write-ups, and notes from Rishi.
New posts to your inbox
Detecting OpenClaw, Clawdbot, and Moltbot gateway exposure by listening for mDNS service advertisements with a JavaScript-protocol Nuclei template.
Using exposed SafeBase trust portals and Nuclei headless scanning to extract public-facing security controls, validate assurance claims, and automate change detection at scale.
Much of my work as a security researcher involves finding exposed products and services on the internet. In every case, I did this by inspecting HTTP response bodies and headers and looking for specific keywords. But I w
Over the past few weeks, two critical vulnerabilities - CVE-2025-8875 and CVE-2025-8876 have surfaced as active threats in the wild. Both have been flagged by CISA as being widely exploited, and organisations relying on
Exploring the ethical limits of collecting personal data during investigations, and how OSINT practitioners can balance legal access with responsible use.
A guest post covering the methodology behind scalable phishing detection templates in Nuclei and practical use cases for OSINT and threat analysis.