Research

Exploring Offensive Security: Research and Developments

Discover advanced research and insights into offensive security techniques, methodologies, and case studies to strengthen your cybersecurity defenses.

GitHub

Latest Posts

View all posts »

Unauthenticated Arbitrary File Read in Gazebo Sim WebsocketServer

We found an unauthenticated arbitrary file read in Gazebo Sim's WebsocketServer plugin where a single WebSocket frame reads any file on the server, including /etc/shadow and SSH keys.

Integer Overflow in Bullet3 STL Mesh Parser

We found an integer overflow in Bullet3's STL mesh loader where a crafted triangle count bypasses the sanity check, causing the parser to read 4 GB from an 88-byte heap buffer.

Training a LoRA to Generate Custom Figurine Designs

We fine-tuned a Flux Dev LoRA on 12 images to generate custom figurine designs in a specific art style, from data preparation to a working Gradio app.

Introducing the HackerOne Reports Dashboard

We built a dashboard that aggregates over 14,000 publicly disclosed HackerOne bug bounty reports with POC detection, searchable filters, and weekly auto-updates.

Press Esc or click anywhere to close