Jakub Pavlik

Engineering

Exaforce

Ghost in the Script: Impersonating Google App Script projects for stealthy persistence

Research

September 9, 2025

Ghost in the Script: Impersonating Google App Script projects for stealthy persistence

Npm provenance: bridging the missing security layer in JavaScript libraries

Industry

November 6, 2024

Npm provenance: bridging the missing security layer in JavaScript libraries

Exaforce’s response to the LottieFiles npm package compromise

Industry

November 1, 2024

Exaforce’s response to the LottieFiles npm package compromise

The dream SOC team.
Working with you 24/7.

Detection, triage, investigation, and response covered by four Exabots running on a unified, real-time view of your environment. Operate the platform yourself, or have Exaforce run it for you.

Request Demo

Contact MDR Experts

Jakub Pavlik

Ghost in the Script: Impersonating Google App Script projects for stealthy persistence

Npm provenance: bridging the missing security layer in JavaScript libraries

Exaforce’s response to the LottieFiles npm package compromise

The dream SOC team. Working with you 24/7.

The dream SOC team.
Working with you 24/7.