Research

Original security research covering eBPF internals, Linux kernel exploitation mitigations, vulnerability disclosures, and threat intelligence. All research is conducted independently and represents my own views and findings.

CVE-2025-32324: Android ActivityManagerShellCommand Authentication Bypass Leading to LaunchAnyWhere

Deep analysis of CVE-2025-32324, a critical authentication bypass vulnerability in Android’s ActivityManagerShellCommand that enables LaunchAnyWhere attacks through thread context manipulation.

eBPF JIT Compiler Internals: Understanding Constant Blinding Implementation

Deep dive into eBPF’s constant blinding mechanism - a security defense against JIT-spray attacks in the Linux kernel.

How Attackers Are Weaponizing OAuth to Silently Take Over Microsoft Outlook Accounts

Investigation into sophisticated OAuth phishing campaigns targeting Microsoft Outlook accounts that bypass traditional security controls.

Novel approach to tackle UAF Bugs in the Linux Kernel

Analysis of dedicated bucket allocators as a novel mitigation technique for use-after-free vulnerabilities in the Linux kernel.