Hacking

• Popping an alert from a sandboxed WebAssembly module 2025-08-19

  Phrack 72 article and WHY2025 conference talk

  hack
• Spoofing OpenPGP.js signature verification (write-up) 2025-06-15

  A logical vulnerability in OpenPGP.js, allowing for spoofed signatures using a crafted PGP packet sequence

  hack web CVE-2025-47934
• Exploiting LibreOffice (write-up) 2025-02-12

  Two vulnerabilities in LibreOffice allowing semi-arbitrary file read/write and env var leakage

  hack CVE-2024-12425 CVE-2024-12426 CVE-2025-64407
• Ghostscript security research (write-up series) 2024-10-31

  A bunch of bugs in Ghostscript, including a classic format string vulnerability leading to RCE

  hack web CVE-2024-29506 CVE-2024-29507 CVE-2024-29508 CVE-2024-29509 CVE-2024-29510 CVE-2024-29511
• Arbitrary JavaScript execution in PDF.js (write-up) 2024-05-20

  A bug in PDF.js (and Firefox) with widespread XSS consequences

  hack web CVE-2024-4367 CVE-2024-34342
• Vulnerability write-up - “Dangerous assumptions” 2023-02-24

  Write-up on several bugs in Feathers.js, Sequelize, and Socket.IO relating to type confusion and incorrect interop assumptions

  hack web CVE-2022-29822 CVE-2022-2422 CVE-2023-22580 CVE-2023-22579 CVE-2023-22578 CVE-2022-2421
• Porting Doom to a payment terminal 2022-07-18

  Hacking the Verifone VX820 payment terminal to run Doom and more.

  hack embedded
• Exploiting a stack-based buffer overflow in practice 2020-11-17

  Exploiting a remotely-triggerable stack-based buffer overflow vulnerability on a Zyxel VMG8825-T50 router.

  hack embedded router
• Getting root on a Zyxel VMG8825-T50 router 2020-03-26

  Finding and chaining multiple vulnerabilities to get root access on a Zyxel VMG8825-T50 router.

  hack embedded router