Advanced Security Research & Exploitation

Pwning Systems
and Fuzzing Binaries

Specialized in low-level vulnerability research, exploit engineering, and offensive security tooling.

Featured Tool
DiffRays Logo

DiffRays is a research-oriented tool for binary patch diffing, designed to aid in vulnerability research, exploit development, and reverse engineering.

Active Development
>diffrays --help
______ _ __ ________ | _ (_)/ _|/ _| ___ \ | | | |_| |_| |_| |_/ /__ _ _ _ ___ | | | | | _| _| // _` | | | / __| | |/ /| | | | | | |\ \ (_| | |_| \__ \ |___/ |_|_| |_| \_| \_\__,_|\__, |___/ __/ | |___/ v2.0 Tau usage: diffrays [-h] {diff,server,autodiff} ... Binary Diff Analysis Tool - Decompile, Compare, and Visualize Binary Changes positional arguments: {diff,server,autodiff} Command to execute diff Analyze two binaries and generate differential database server Launch web server to view diff results autodiff Auto-download binaries (via CVE or manual input) and run diff options: -h, --help show this help message and exit Examples: diffrays autodiff --cve CVE-2025-29824 diffrays autodiff -f clfs.sys -m 2025-09 diffrays autodiff -f clfs.sys -m 2025-09 -w 2023-H2 diffrays diff old_binary.exe new_binary.exe diffrays diff old.so new.so -o custom_name.sqlite --log diffrays server --db-path result_old_new_20231201.sqlite --debug For more information, visit: https://github.com/pwnfuzz/diffrays

1-Day Breakdowns

Detailed analysis of recent patches and N-day vulnerabilities.

Net-SNMP2025-01-04

CVE-2025-68615

Net-SNMP Buffer Overflow Vulnerability via Type Confusion

Buffer overflow vulnerability in the Net-SNMP library residing in the conditional check of the snmp_input function during parsing of incoming trap messages.

Read Analysis
Microsoft2025-01-04

CVE-2025-60719

Windows Ancillary Function Driver for WinSock EoP

Race condition use-after-free vulnerability in Windows AFD driver (afd.sys) allowing local privilege escalation to SYSTEM.

Read Analysis
Microsoft2025-01-04

CVE-2025-60709

Windows CLFS Driver Elevation of Privilege

Out-of-bounds memory read vulnerability in the Windows Common Log File System (CLFS) driver due to insufficient bounds checking in ClfsGetFirstRecord().

Read Analysis

Latest Research

View Archive

The Cryptographic Blind Spot: Sante PACS Server's Decryption Overflow Unveiled

2025-07-21

This article contains a full breakdown of a stack-based buffer overflow vulnerability found in Sante PACS Server version before 4.2.0 (Credits: Tenable Research). The whole application is built on top of the C, meaning we will deal with full reverse engineering, IDA pseudocode, disassemblers and debugger shenanigans.

D4mianWayne
Read More
CVE-2025-2263Buffer Overflow

CVE 2024-37397 - Ivanti Endpoint Manager XXE Vulnerability

2024-11-24

This blog provides an in-depth analysis of the exploitation process for an unauthenticated External XML Entity (XXE) vulnerability in Ivanti Endpoint Manager, identified as CVE-2024-37397.

D4mianWayne
Read More
CVE-2024-37297.NETOOB-XXE+1

Exploring Recent CVEs in HPE Insight Remote Support

2025-01-08

In this post, we’ll delve into two vulnerabilities recently discovered in the HPE Insight Remote Support (IRS) application, versions prior to v7.14.0.629. These vulnerabilities—CVE-2024-53675 (unauthenticated XXE vulnerability) and CVE-2024-53676 (Remote Code Execution, or RCE vulnerability)—pose significant security risks, allowing unauthorized access and arbitrary code execution on vulnerable systems.

D4mianWayne
Read More
CVE-2024-53676CVE-2024-53675Java+3

Active Projects

All Projects

POCs

Collection of proof‑of‑concept exploits for various CVEs and vulnerabilities.

Various (likely Python, C, etc.)PoC Repository

PwnLand

Pwning notes: tutorials, examples & challenge solutions for binary exploitation.

PythonExploit/CTF Repository

WindowsHeapMastery

Deep dives and tools focused on Windows heap internals and exploitation techniques.

C/C++Exploit Research Tool

commithunter

Staying top of the latest security related commits.

PythonSecurity Tool