Fuzzing Sudo (Part I): From NSS to Heap Overflow — Linking CVE-2025-4802 with Baron Samedit (CVE-2021-3156)

Posted on 2025-08-24

A journey for bug hunting in Linux binary fuzzing

Pwn mp_ : Exploiting malloc_par to Gain Tcache Bin Control

Posted on 2025-04-14

Attack on Tcache Structures for Heap Exploitation in Modern Glibc

ORW: Open, Read, Write – Pwn A Sandbox Using Magic Gadgets

Posted on 2024-09-18

ORW ROP chain with magic gadgets to pwn a Sandbox

Safe-linking as A Weapon: Safe Link Double Protect

Posted on 2024-06-15

Safe-linking is a mitigation but also a weapon in some cases.

House of Water

Posted on 2024-06-07

Fake a 0x10001 chunk on the Tcache metadata.

House of Botcake

Posted on 2024-05-06

Make Tcache Double Free great again!

CURSOR: NEON DAY | NIGHT