Enclave: Yanir Tsarimi

FlagLeft: We Found A Forgotten Flag That Turned Microsoft 365 Apps Into a Silent Account Takeover Pipeline for Billions of Users

How a development flag left in production allowed any app on an Android device to silently take over a Microsoft account.

Yanir TsarimiJune 2, 2026

MapRoot: A Tale of Two Zero-Days, Two Patches, Two Bypasses Leading to Cross-Tenant RCE on Microsoft Planetary Computer

Two zero-days in numexpr and GDAL gave us code execution inside Microsoft Planetary Computer. The real impact was RBAC: a popped pod could access cross-tenant secrets. Microsoft downgraded it, then quietly removed the permissions, and later reversed it back to critical.

Yanir TsarimiMay 28, 2026

NGINX Rift impact in the wild: we scanned 1,465 configs from 528 popular repos (CVE-2026-42945)

We scanned 1,465 nginx configs from 528 popular GitHub repos for CVE-2026-42945. Here are the results.

Yanir TsarimiMay 15, 2026

How We Could Watch Your Azure SRE Agent In Real Time

How a single mistake turned Azure SRE Agent into an open window into your cloud infrastructure.

Yanir TsarimiApril 20, 2026

Security's Blindspot & The Last Mile of Shipping Software

Software security is solving the wrong problem. Enclave is launching from stealth with $6M to build the independent reviewer for the AI era of software.

Tal Hoffman, Dvir Segev & Yanir TsarimiMarch 26, 2026