{"generator":"Jekyll","link":[{"@attributes":{"href":"http:\/\/research.ivision.com\/feed.xml","rel":"self","type":"application\/atom+xml"}},{"@attributes":{"href":"http:\/\/research.ivision.com\/","rel":"alternate","type":"text\/html"}}],"updated":"2026-05-21T00:21:52+00:00","id":"http:\/\/research.ivision.com\/feed.xml","title":"ivision Research Blog","subtitle":"Benefit from extensive research compiled by the ivision security assessment team.","entry":[{"title":"Hashcat v7: Python Bridge in Practice","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/hashcat-v7.html","rel":"alternate","type":"text\/html","title":"Hashcat v7: Python Bridge in Practice"}},"published":"2026-04-06T00:00:00+00:00","updated":"2026-04-06T00:00:00+00:00","id":"http:\/\/research.ivision.com\/hashcat-v7","content":{"@attributes":{"type":"html"}},"author":{"name":"Austin Ralls"},"category":[{"@attributes":{"term":"Research"}},{"@attributes":{"term":"Enterprise Pentesting & Red Team"}},{"@attributes":{"term":"technical"}},{"@attributes":{"term":"offensive"}},{"@attributes":{"term":"tool"}},{"@attributes":{"term":"technique"}},{"@attributes":{"term":"hashcat"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Extracting Windows Credentials From Full Memory Dumps, Part I: MSV","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/Extracting-Windows-credentials-from-full-memory-dumps-Part-1.html","rel":"alternate","type":"text\/html","title":"Extracting Windows Credentials From Full Memory Dumps, Part I: MSV"}},"published":"2026-03-23T00:00:00+00:00","updated":"2026-03-23T00:00:00+00:00","id":"http:\/\/research.ivision.com\/Extracting-Windows-credentials-from-full-memory-dumps-Part-1","content":{"@attributes":{"type":"html"}},"author":{"name":"\u00c1ngel Su\u00e1rez-B\u00e1rcena Mart\u00edn"},"category":[{"@attributes":{"term":"Research"}},{"@attributes":{"term":"technical"}},{"@attributes":{"term":"offensive"}},{"@attributes":{"term":"windows"}},{"@attributes":{"term":"re"}},{"@attributes":{"term":"technique"}},{"@attributes":{"term":"binary"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Introducing dtu","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/introducing-dtu.html","rel":"alternate","type":"text\/html","title":"Introducing dtu"}},"published":"2025-11-03T00:00:00+00:00","updated":"2025-11-03T00:00:00+00:00","id":"http:\/\/research.ivision.com\/introducing-dtu","content":{"@attributes":{"type":"html"}},"author":{"name":"Danny Rosseau"},"category":[{"@attributes":{"term":"Device Security"}},{"@attributes":{"term":"Research"}},{"@attributes":{"term":"technical"}},{"@attributes":{"term":"offensive"}},{"@attributes":{"term":"android"}},{"@attributes":{"term":"re"}},{"@attributes":{"term":"tools"}},{"@attributes":{"term":"techniques"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Exploiting the CHARX SEC-3150 Electric Vehicle Charge Controller","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/charx-exploitation.html","rel":"alternate","type":"text\/html","title":"Exploiting the CHARX SEC-3150 Electric Vehicle Charge Controller"}},"published":"2025-09-23T00:00:00+00:00","updated":"2025-09-23T00:00:00+00:00","id":"http:\/\/research.ivision.com\/charx-exploitation","content":{"@attributes":{"type":"html"}},"author":{"name":"Jesson Soto Ventura"},"category":[{"@attributes":{"term":"Device Security"}},{"@attributes":{"term":"Research"}},{"@attributes":{"term":"offensive"}},{"@attributes":{"term":"technical"}},{"@attributes":{"term":"iot"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Third-Party Risks in an Interconnected World","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/3rd-party-risks.html","rel":"alternate","type":"text\/html","title":"Third-Party Risks in an Interconnected World"}},"published":"2025-08-18T00:00:00+00:00","updated":"2025-08-18T00:00:00+00:00","id":"http:\/\/research.ivision.com\/3rd-party-risks","content":{"@attributes":{"type":"html"}},"author":{"name":"Roman Faynberg"},"category":[{"@attributes":{"term":"Security Strategy"}},{"@attributes":{"term":"strategic"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Introduction to Threat Modeling: What Can Go Wrong?","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/introduction-to-threat-modeling.html","rel":"alternate","type":"text\/html","title":"Introduction to Threat Modeling: What Can Go Wrong?"}},"published":"2025-08-08T00:00:00+00:00","updated":"2025-08-08T00:00:00+00:00","id":"http:\/\/research.ivision.com\/introduction-to-threat-modeling","content":{"@attributes":{"type":"html"}},"author":{"name":"Roman Faynberg"},"category":[{"@attributes":{"term":"Security Strategy"}},{"@attributes":{"term":"strategic"}},{"@attributes":{"term":"defensive"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"AI Gets a Library Card: Security Ramifications of the Model Context Protocol","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/model-context-protocol.html","rel":"alternate","type":"text\/html","title":"AI Gets a Library Card: Security Ramifications of the Model Context Protocol"}},"published":"2025-08-01T00:00:00+00:00","updated":"2025-08-01T00:00:00+00:00","id":"http:\/\/research.ivision.com\/model-context-protocol","content":{"@attributes":{"type":"html"}},"author":{"name":"Brad Dixon"},"category":[{"@attributes":{"term":"Application Security"}},{"@attributes":{"term":"AI"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Bitwarden Research 1: Security Model","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/bitwarden-server-hashcat-plugin-1-bitwarden.html","rel":"alternate","type":"text\/html","title":"Bitwarden Research 1: Security Model"}},"published":"2025-07-18T00:00:00+00:00","updated":"2025-07-18T00:00:00+00:00","id":"http:\/\/research.ivision.com\/bitwarden-server-hashcat-plugin-1-bitwarden","content":{"@attributes":{"type":"html"}},"author":{"name":"Austin Ralls"},"category":[{"@attributes":{"term":"Research"}},{"@attributes":{"term":"Enterprise Pentesting & Red Team"}},{"@attributes":{"term":"technical"}},{"@attributes":{"term":"offensive"}},{"@attributes":{"term":"tool"}},{"@attributes":{"term":"technique"}},{"@attributes":{"term":"hashcat"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Bitwarden Research 2: Hashcat Plugin","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/bitwarden-server-hashcat-plugin-2-hashcat.html","rel":"alternate","type":"text\/html","title":"Bitwarden Research 2: Hashcat Plugin"}},"published":"2025-07-18T00:00:00+00:00","updated":"2025-07-18T00:00:00+00:00","id":"http:\/\/research.ivision.com\/bitwarden-server-hashcat-plugin-2-hashcat","content":{"@attributes":{"type":"html"}},"author":{"name":"Austin Ralls"},"category":[{"@attributes":{"term":"Research"}},{"@attributes":{"term":"Enterprise Pentesting & Red Team"}},{"@attributes":{"term":"technical"}},{"@attributes":{"term":"offensive"}},{"@attributes":{"term":"tool"}},{"@attributes":{"term":"technique"}},{"@attributes":{"term":"hashcat"}}],"summary":{"@attributes":{"type":"html"}}},{"title":"Bitwarden Research 3: Data Protection","link":{"@attributes":{"href":"http:\/\/research.ivision.com\/bitwarden-server-hashcat-plugin-3-dataprotection.html","rel":"alternate","type":"text\/html","title":"Bitwarden Research 3: Data Protection"}},"published":"2025-07-18T00:00:00+00:00","updated":"2025-07-18T00:00:00+00:00","id":"http:\/\/research.ivision.com\/bitwarden-server-hashcat-plugin-3-dataprotection","content":{"@attributes":{"type":"html"}},"author":{"name":"Austin Ralls"},"category":[{"@attributes":{"term":"Research"}},{"@attributes":{"term":"Enterprise Pentesting & Red Team"}},{"@attributes":{"term":"technical"}},{"@attributes":{"term":"offensive"}},{"@attributes":{"term":"tool"}},{"@attributes":{"term":"technique"}},{"@attributes":{"term":"hashcat"}}],"summary":{"@attributes":{"type":"html"}}}]}