Offensive Security
Researcher &
Software Security.

Turning attack surfaces into CVEs.

×7

CVEs publicly disclosed vulnerabilities

// intelligence_feed

Latest Writeups.

24 juin 2026 7 min read

CVE-2026-56111: OOB Write - Writing Past the Mesh in Marlin Firmware

How three copies of one G-code command revealed an out-of-bounds write reachable from a single serial line, confirmed on a real STM32 target.

Read article

28 mai 2026 17 min read

Dependency-Track: Breaking Tenant Isolation with a Single PUT Request

OWASP Dependency-Track ships a Portfolio ACL feature that promises multi-tenant isolation. Turns out it only blocks reads. A low-privileged user can suppress any vulnerability, rewrite triage decisions, poison audit trails, and inject rogue projects into another team's hierarchy. Here is how.

Read article

16 mai 2026 5 min read

Shadow Credentials: Owning AD Through msDS-KeyCredentialLink

Shadow Credentials abuse msDS-KeyCredentialLink to authenticate as any user via PKINIT without touching their password. No reset, no ticket forging, no detection by most SOCs.

Read article

Offensive Security Researcher & Software Security.

Latest Writeups.

CVE-2026-56111: OOB Write - Writing Past the Mesh in Marlin Firmware

Dependency-Track: Breaking Tenant Isolation with a Single PUT Request

Shadow Credentials: Owning AD Through msDS-KeyCredentialLink

Offensive Security
Researcher &
Software Security.