← home

blog

• 2025 Android Internals Deep Dive - Deserialization
• 2025 Android Internals Deep Dive - Deep and App Linking
• 2025 Android Internals Deep Dive - Implicit Intents
• 2024 Exploiting a Quarantine UAF Mitigation on a Custom Allocator Challenge
• 2024 Not All Roads Lead to PWN2OWN: CGI Fuzzing, AFL and ASAN - Part 3
• 2024 Not All Roads Lead to PWN2OWN: Firmware Reverse Engineering - Part 2
• 2024 Not All Roads Lead to PWN2OWN: Hardware Hacking - Part 1
• 2024 A Reverse Engineering Journey Walkthrough
• 2022 Linux Kernel DirtyCred File Exploitation applied on an io_uring UAF - CVE-2022-2602
• 2022 Linux Kernel Exploit Development - CVE-2020-27786
• 2022 Hunting for Linux Kernel Public Vulnerabilities
• 2022 Kernel Read Write Execute - KRWX
• 2020 Owncloud Multiple Vulnerabilities
• 2020 Android Inter-Process Communication: Binder and Service Manager Perspective - Part 2
• 2020 Android Inter-Process Communication: Introduction - Part 1
• 2020 Moodle Server-Side Request Forgery Vulnerability
• 2019 Remote Mobile Phone Geolocalization
• 2019 Rusty Joomla Remote Code Execution
• 2017 How to Write FUD Malware (Thesis)