I’m an independent vulnerability researcher with a background in engineering and red teaming. I take real-world software apart and write up what I find. My CVEs are here.
Publications & Writeups
- 2026-05 Advisory TeamSpeak 3 Server - UAF, Heap Overflow (Pre-Auth) (3 CVEs)
- 2025-11 Research No Leak, No Problem - Bypassing ASLR with a ROP Chain to Gain RCE
- 2025-09 Advisory UDisks - OOB Read (1 CVE)
- 2025-08 Advisory 2K+ and 4K Series - RCE (Pre-Auth) (3 CVEs)
- 2025-02 Research ROPing our way to RCE
- 2025-01 CTF A Journey to the House of Tangerine
- 2024-12 Research Exploring CVE-2023-2163: My Intro to Kernel Hacking
- 2024-09 CTF Funtran - Maths to the Rescue
- 2024-07 CTF Syscalls - Messing with Shellcode and Seccomp Filters
- 2024-06 Research Beyond the @ Symbol: Exploiting the Flexibility of Email Addresses to gain RCE
- 2024-06 Talk Beyond the @ Symbol: Exploiting Email Address Flexibility to gain RCE
- 2024-04 Advisory MailCleaner - RCE (Pre-Auth) (6 CVEs)