Exploit Development & Binary Security

Advanced GOT Overwrite: 64-Bit Multi-Byte %hn/%hhn Writes with Null-Byte Bypass

Format String Arbitrary Write: Exploiting %n for GOT Overwrite and Code Redirection

Integer Truncation Exploitation: 64-to-32-Bit Narrowing, Size Check Bypass and Memory Corruption

Signed/Unsigned Confusion Exploitation: Negative Index Underflow and Memory Corruption via Sign Mismatch

Decrypting TLS Traffic via SSLKEYLOGFILE Integration and Encrypted Session Reconstruction

Docker Volume Misconfiguration: Sensitive Host Path Exposure and Container-to-Host Escalation

Privileged Container Escape: Linux Capability Abuse and Host Device Access for Breakout

Kubernetes Dashboard Unauthenticated Access: Pod Creation, Secret Enumeration and Admin Escalation

Advanced Multi-Layer Encoding with Compression: gzip/zlib Layer Identification and Programmatic Decoding

Custom VM Obfuscation Reversal: Dispatcher Loop Analysis and Python Disassembler Construction

Password check

License key generation

Simple Buffer Overflow Without Protections: Return Address Overwrite and Program Flow Redirection

ret2libc on x86-64: GOT-Based libc Leak, ROP Gadget Setup and system("/bin/sh") Invocation

ROP Chain Construction: Gadget Chaining for execve Syscall with Stack Alignment and Bad-Byte Avoidance

Canary Brute-Force on Forking Servers: Byte-by-Byte Enumeration Exploiting fork() Memory Inheritance

Advanced seccomp Bypass: 32-Bit int 0x80 Syscall Table Exploitation Outside 64-Bit Filter Coverage

Kubernetes RBAC Privilege Escalation: ClusterRoleBinding Abuse and Service Account Token Misuse

Kubernetes Secret Enumeration in Cluster: Namespace Traversal and Sensitive Data Extraction

Kubernetes Service Account Abuse: Token-Based API Access and Lateral Movement Within Cluster

IAM policy misconfig

Analyzing Kerberoasting PCAP Captures via TGS-REQ Identification and Hashcat Ticket Extraction

Analyzing gRPC PCAP Captures via HTTP/2 Stream Identification and Protobuf Parameter Extraction