Boring old XSS During 2025 I was determined to understand what it meant to have persistence within a web environment. This led me down a massive rabbit hole… from navigation hooking to service worker attacks, I ventured forth. In the end, we managed not only to persist past navigation, but managed to persist our control over a victims browsing session even after browser close. I had the opportunity to present the research output at the following conferences:

Rise of the Pentest Agents I was fortunate enough to be apart of the NoScope pentesting agent early access development program backed by TryHackMe. Regardless of the potential controversy that was stirred up with the release of this solution, I hold firm that pentesting agents can improve the workflow of human pentesters if given direction, and can be used as a force for good to secure the world! I strongly believe in the potential NoScope has, having witnessed it first hand.