Offensive security researcher and systems programmer. I find real bugs in production code.
| Advisory | Target | Severity | Status |
|---|---|---|---|
| GHSA-6457-j4jq-j7x5 | Spring AI Alibaba | Critical 9.9 | Pending CVE |
| GHSA-h2c7-rx9m-j6rr | Spring AI Alibaba | High 8.1 | Pending CVE |
| GHSA-q83f-9wj5-xrmc | Spring AI Alibaba | High 7.5 | Pending CVE |
| DJL JAR bypass | deepjavalibrary/djl | Critical 9.8 | Huntr — pending |
| Kubeflow CUSTOM RCE | kubeflow | Critical 9.9 | Huntr — pending |
| smolagents numpy DoS | huggingface/smolagents | Medium | Huntr — pending |
| GHSA-cxjq-35gw-4m9f | MLflow LangChain | High | Credited in PR #23292 |
| Patch | Subsystem | Status |
|---|---|---|
| net/llc: fix UBSAN array-index-out-of-bounds in llc_conn_state_process | Networking | ⏳ Under review — David Miller, Eric Dumazet |
| cfg80211: validate chandef before set_monitor_channel | WiFi/Networking | ⏳ Under review — Johannes Berg |
| mm/hugetlb: fix deadlock in __hugetlb_zap_begin() | Memory Management | ⏳ In discussion |
| accel/rocket: fix ignored return value | Rockchip NPU Driver | ⏳ Under review |
| zsmalloc: zero-initialize zspage memory | Memory Management |
| Tool | What it does |
|---|---|
| mlflow-audit | Static analyzer detecting unguarded pickle deserialization in MLflow codebases |
| Valkyrie | Linux privilege escalation auditor mapped to MITRE ATT&CK |
| Cylock | Multi-threaded network scanner built from raw TCP/IP primitives |
| Dynamic-Honeypot-RL | Adaptive honeypot using Q-learning to respond to live attacker behaviour |
| Shield-Cloud | Self-healing cloud with CRYSTALS-Kyber + AES-256-GCM, autonomous key rotation |
- My Linux kernel patch got merged by Andrew Morton. Then it got removed. Here's why that's still a win.
- I submitted 4 Linux kernel patches in one night as a final year student
- I found a bug in software running on millions of routers
Python · C · Bash · Linux Internals · Raw Sockets · Docker · CRYSTALS-Kyber · MITRE ATT&CK