Research Vault
Vulnerability disclosures, whitepapers, and offensive tooling releases.
Bypassing Modern EDRs using Direct Syscalls and Call Stack Spoofing
This paper explores advanced methodologies for circumventing User-land hooks in next-generation Endpoint Detection and Response (EDR) solutions. We detail the utilization of Heaven's Gate alongside synthetic call stacks to maintain complete operational stealth.
Quantum-Resistant Cryptography in Web3 Environments
An analysis of lattice-based cryptography implementations meant to replace ECDSA in decentralized networks. We demonstrate a theoretical attack path on early implementations of CRYSTALS-Kyber when improperly seeded.
Poisoning the Well: Exploiting LLM Fine-Tuning Pipelines
Case study on how injecting adversarial examples into specialized fine-tuning datasets can create persistent, logic-based backdoors in enterprise Large Language Models. Includes a Proof of Concept using LoRA.
Zero-Click Exploits on iOS WebKit (CVE-2025-XXXX)
Full technical teardown of a sophisticated memory corruption vulnerability within Apple's WebKit. This exploit leverages a logic flaw in JIT compilation to achieve arbitrary RCE without user interaction.
Securing Kubernetes Clusters at Petabyte Scale
A comprehensive guide to architecting defense-in-depth for massive K8s environments. Topics cover eBPF-based runtime security, strict pod admission controllers, and automated secret rotation via HashiCorp Vault.
Advanced Persistence in UEFI Firmware
Reverse engineering a novel rootkit found active in the wild that persists by flashing itself into the motherboard's SPI flash memory, effectively surviving complete OS reinstalls and hard drive replacements.
Exploiting eBPF for Stealthy Linux Rootkits
Demonstration of how the Extended Berkeley Packet Filter (eBPF), a powerful observability tool, can be maliciously weaponized to manipulate kernel-space data structures, hide processes, and capture network packets.
Supply Chain Attacks via CI/CD Pipelines
A review of modern software supply chain compromises, focusing on GitHub Actions abuse, unpinned dependencies, and Typosquatting in NPM. Provides a robust framework for validating container provenance.
Abusing OAuth 2.0 Misconfigurations in Enterprise SaaS
Exploring subtle implementation flaws in OAuth 2.0 and OpenID Connect flows. This paper details how missing PKCE, weak redirect URI validation, and token leakage can lead to complete account takeover.
Reversing IoT Firmware Architecture
A methodology for extracting, unpacking, and emulating embedded firmware using QEMU. Includes a walkthrough of discovering a hardcoded backdoor in a popular commercial IP camera system.
Defeating Biometric Authentication with Generative AI
Using custom Diffusion models to generate high-fidelity synthetic fingerprints and facial maps capable of bypassing consumer-grade biometric scanners with a 78% success rate.
Adversary-in-the-Middle (AitM) Phishing Dynamics
Analyzing the traffic flows and evasion techniques of Evilginx2 reverse proxies. The study breaks down how these proxies capture authentication tokens and effectively bypass SMS and App-based MFA prompts.