Exploitation research, vulnerability analysis, and the mechanics behind modern security primitives.
Revisits namespace injection (House of Corrosion, 2019) on modern glibc 2.39-2.43 with BIND_NOW. First working exploit, updated offsets, and new behavioral constraints.
End-to-end Linux kernel heap exploitation: from a use-after-free in a misc device driver to container escape, bypassing KASLR, SMEP, SMAP, and SLUB hardening.
A realistic heap exploitation chain showing how weak, byte-wise corruption can break allocator invariants under modern glibc hardening.
ret2dso demonstrates that runtime symbol resolution remains exploitable under full RELRO through dynamic loader metadata corruption.