Excited to be nominated for the Best RCE of 2024 Pwnie Awards🥰.

Nice work! I'm glad that my blog post could be a little helpful in inspiring the discovery of such a beautiful bug.😃😃

Glad to be #15 on overrall list and #6 on Windows list, thanks MSRC and bounty team as always. Congrats all on the list!

I'm happy to get BEST RCE as my first pwnie awards! A new archievement in my career. Thanks Pwnie Awards and CONGRATS to all pwnies, same to my friend chompie 🥳🥳🥳

I definitely had some discussions with MSRC during this quarter period, I reported some logical based issues and shared how them work and why with them. Thanks MSRC and bounty team for their understanding, quick response and kind help as always.😄

Finally received my PwnieAwards Pwnie Awards and a cute letter from chompie , thank you and b33f | 🇺🇦✊ for congratulations and international delivery, it's definitely a milestone in my hacker's career. Just stay hungry and keep hunting!

I have posted the slides for the talk chompie and I gave this past weekend at H2HC -> The Kernel Hacker’s Guide to the Galaxy: Automating Exploit Engineering Workflows #H2HC github.com/FuzzySecurity/…

🎄 All I Want for Christmas is a CVE-2024-30085 Exploit 🎄 As always, we at starlabs are sharing what we learnt. This time, it's brought to you by Cherie-Anne Lee starlabs.sg/blog/2024/all-…

Received my MVR swag box at the last day of 2024, thank you Security Response ! And happy new year you all!

Think you’ve got what it takes to pop shells and snag your ticket to... RE//verse and Off-By-One Conference ? 😏 github.com/star-sg/challe…

We are publishing less here now. But here is a recent post by Tuấn Linh & lots of guidance by chiefpie starlabs.sg/blog/2025/cve-…

I'm unable to join the conference Insomni’hack 2025, so I write a part of content into a blog, hope you enjoy my blog. v-v.space/2025/02/18/Azu…

[Official Announcement]: deepsec.cc 2025 IS COMING!!! This is a community-driven, non-profit information security closed-door symposium, where technology speaks loudest. 🌐 deepsec.cc 📅 June 16, 2025 📍 Shanghai, China 📧 [email protected]

Excited to announce our talk has been accepted by Black Hat #BHUSA!🥳🥳🥳 In my part of presentation, I’ll cover logic-based pre-auth remote vulnerabilities uncovered via novel abuse of Windows native HTTP API. Can't wait to see y'all in Las Vegas! blackhat.com/us-25/briefing…

In #BHUSA Briefings "Diving into Windows HTTP: Unveiling Hidden Preauth Vulnerabilities in Windows HTTP Services" where the speakers will discuss the different architectures of Windows HTTP services and share multiple previously undisclosed vulnerability cases and attacks. They

Happy to make list again! Thank you Security Response and congrats all!

During #BHUSA Briefing "Diving into Windows HTTP: Unveiling Hidden Preauth Vulnerabilities in Windows HTTP Services," we will discuss the different architectures of Windows HTTP services and share multiple previously undisclosed vulnerability cases and attacks. We will also

Well. Happy to be on the MVRs annual list again and again — twice in a year 😂! Ended up #11. Thanks Security Response and congrats all!

We released our Fuzzilli-based V8 Sandbox fuzzer: github.com/googleprojectz… It explores the heap to find interesting objects and corrupts them in a deterministic way using V8's memory corruption API. Happy fuzzing!

Our slide is online: i.blackhat.com/BH-USA-25/Pres… Glad to share our pre-auth DoS & RCE bug hunting research at #BHUSA! Thanks Black Hat for the pre-recording, as we couldn’t attend in person this time for personal reasons. Questions? DM us VictorV wei zhiniang peng