I'm Memphis Marshall, a SOC analyst at Seamless Intelligence in Perth, Western Australia and graduate from Edith Cowan University. I have a strong interest for cybersecurity and software development, I enjoy CTFs and HackTheBox in my spare time, plus researching and experimenting with new exploits. If you have any questions or comments on what I do, feel free to contact me. I also have a blog where I intend to write up some of my more interesting projects.
PublicPasswd is an exploit chain which uses CVE-2026-46333 to get a read-only file descriptor for /etc/shadow, and then CVE-2026-31431 (CopyFail) to write to it. The tool dumps the hashes of all users who have a password on the system, and allows changing any other user's password without authentication or elevation to root. Can be run as any user and requires no special permissions.
RootRemover is a method of using CVE-2026-31431 (CopyFail) to temporarily remove the root password of a host, allowing for easy passwordless elevation. It's a modification of rootsecdev's version which sets your UID to 0 upon a fresh login (requiring the current user's password). Both of these differ to the original PoC in that they should work on any architecture and aren't dependent on modifying SUID binaries.
A Python library to for controlling Roku TV devices on the same network as you, regardless whether the regular ECP API is enabled in settings. This was developed by reverse engineering ECP2, the protocol Roku TVs use to communicate with the mobile app and can search the network for TVs to interface with.
An alternative commandline spoofing proof-of-concept. Invisirun uses NtCreateUserProcess to pad the Commandline property of the PEB with null characters, aiming to avoid detection by trailing spaces/other characters.
LunaJuice is an experimental tool created during an internship to monitor and log the activities of suspicious Windows processes. It can be injected by normal users or administrators (to work on any non-protected process) and hosts a local RPC server to query and change configuration. Its goal is to be easily integrated into defensive workflows and be highly customisable to the user's needs.
github-stats-extended by stats-organization, originally by anuraghazra.
If it's about a specific project, there's probably a place for it in the README, but otherwise you can email me or contact me on Discord @aurillium. While you're here, you should check out my blog!