Our Blog

The hunt for Chromium issue 1072171

Reading time: ~40 min
Intro The last few months I’ve been studying Chrome’s v8 internals and exploits with the focus of finding a type...

Being Stubborn Pays Off pt. 2 – Tale of two 0days on PRTG Network Monitor

Reading time: ~12 min
Intro Last year I wrote how to weaponize CVE-2018-19204. This blog post will continue and elaborate on the finding and...

Intro to Chrome’s V8 from an exploit development angle

Reading time: ~15 min
Intro Last Christmas I was doing quite a bit of research around an exploit for Chrome’s JavaScript engine, V8. While...

Being Stubborn Pays Off pt. 1 – CVE-2018-19204

Reading time: ~13 min
Intro During an internal assessment, I came across monitoring software that had default credentials configured. This monitoring software allowed for...