29 July 2025
Attacking GenAI applications and LLMs – Sometimes all it takes is to ask nicely!
Generative AI and LLM technologies have shown […]
8 July 2025
Export to PDF allows local file inclusion/path traversal in Microsoft 365
Some months ago, while analyzing a […]
18 June 2025
Fault Injection – Follow the White Rabbit
Intro A few months ago, I […]
6 May 2025
My Zero Day Quest & BlueHat Podcast
“If you shame attack research, you […]
23 April 2025
Local privilege escalation on Zyxel USG FLEX H Series (CVE-2025-1731)
“So we wait, this is our […]
15 April 2025
Aiding reverse engineering with Rust and a local LLM
“A large fraction of the flaws […]
25 February 2025
Streamlining vulnerability research with IDA Pro and Rust
“Rebels on the rise, we have […]
11 February 2025
Fault Injection – Looking for a Unicorn
Intro In our previous article Fault […]
29 January 2025
CVE-2024-49138 Windows CLFS heap-based buffer overflow analysis – Part 2
In the previous article, we discussed […]
29 January 2025
CVE-2024-49138 Windows CLFS heap-based buffer overflow analysis – Part 1
CVE-2024-49138 is a Windows vulnerability detected […]
15 January 2025
From arbitrary pointer dereference to arbitrary read/write in latest Windows 11
In the last part of this […]
10 December 2024
An offensive Rust encore
“Give me alchemy, give me wizardry, […]