Sharing slides for another #blackhat EU 2024 talk of us: (Enhancing Automatic Vulnerability Discovery for Windows RPC/COM in New Ways) github.com/edwardzpeng/pr…

Think you’ve got what it takes to pop shells and snag your ticket to... RE//verse and Off-By-One Conference ? 😏 github.com/star-sg/challe…

amazing research

New blog: Be careful of Your UDP Service: Preauth DoS on Windows Deployment Service (remote, 0-click) sites.google.com/site/zhiniangp…

VictorV I got this respond from MSRC. "Thank you for your feedback. Unless otherwise notified, our decision on this matter will stand."

Excited to announce our talk has been accepted by Black Hat #BHUSA!🥳🥳🥳 In my part of presentation, I’ll cover logic-based pre-auth remote vulnerabilities uncovered via novel abuse of Windows native HTTP API. Can't wait to see y'all in Las Vegas! blackhat.com/us-25/briefing…

Excited to share that my talk "Booting into Breaches: Hunting Windows SecureBoot's Remote Attack Surfaces" has been accepted at Black Hat #BHUSA! 🎉 Looking forward to discussing SecureBoot research and the story behind these 31 CVEs in Las Vegas! See you there! 🔍💻

v-v.space/2025/05/15/CVE… RDG RCE sharing

#BHUSA Briefings "Booting into Breaches: Hunting Windows SecureBoot's Remote Attack Surfaces" illustrate how attackers can pivot from firmware to OS-level control without physical access by chaining logical flaws in SecureBoot's trust model. Register here >>

Experimenting with #BinExport builds for Hex-Rays SA IDA Pro 9.1: github.com/cblichmann/bin… (macOS currently broken)

🔓Join me at #BHUSA in Las Vegas (Aug 6) to dissect critical Secure Boot flaws! Until then: Try my OPEN-SOURCE scanner to: ✓ Check if YOUR system is vulnerable ✓ AUTO-GENERATE advisories ✓ Win/Linux support 🛠️Web tool:sbootbreaches.github.io 🐙Talk link:blackhat.com/us-25/briefing…

🎉 Honored to be #10 on the 2025 MSRC Most Valuable Researchers (MVR) Leaderboard! 🎉 Big thanks to the MSRC and bounty team for their quick response, and dedication to making security research impactful. Congrats to all fellow researchers on this year’s list.

Honored to hit #1 😁 Huge thx to Security Response for the support & to my friends for the lifts 🚀 Thanks to Yuki Chen and wei for their guidance and sharing🤗 Congrats to everyone on the board! 🎉

Happy to make list again! Thank you Security Response and congrats all!

We’re proud to partner with Microsoft Most Valuable Researchers (MVRs) like Azure Yang (Azure) from Cyber Kunlun, whose collaboration has driven meaningful changes in Windows Secure boot. At Black Hat, Azure shared research exploring remote attack surfaces in the Windows boot

Booting into Breaches: Hunting Windows SecureBoot's Remote Attack Surfaces by Azure i.blackhat.com/BH-USA-25/Pres…

Binarly is celebrating Phrack Zine 40th anniversary! 61st floor energy. Legends only 🎉

Our slide is online: i.blackhat.com/BH-USA-25/Pres… Glad to share our pre-auth DoS & RCE bug hunting research at #BHUSA! Thanks Black Hat for the pre-recording, as we couldn’t attend in person this time for personal reasons. Questions? DM us VictorV wei zhiniang peng

Just dropped a detailed blog post on our “BitUnlocker” research. If you’re into logical vulnerabilities and BitLocker bypasses, this one’s for you! techcommunity.microsoft.com/blog/microsoft…

One week ago, we came together at the MSRC Researcher Celebration during Black Hat to honor the incredible community that helps keep Microsoft secure. From meaningful conversations to Clippy through the decades on display, it was a night to connect and celebrate your