Advisories
Our security research has led to the discovery and responsible disclosure of vulnerabilities in widely-deployed software. Below are our public CVE advisories.
CVE-2023-32402
An out-of-bounds read issue was addressed with improved input validation.
CVE-2023-32423
A buffer overflow issue in WebKit was addressed with improved memory handling.
CVE-2025-31217
Processing maliciously crafted web content may lead to an unexpected process crash.
CVE-2025-43216
A use-after-free issue was addressed with improved memory management.
Papers
Academic and industry research publications.
Uniswap v4 - A Mathematical Primer
2024LVR & IL Hedge Hook for Concentrated Liquidity Providers, Dynamic Fees & Delta-Gamma Neutrality: Power Perpetuals & Lending Protocols.
Introducing SHELF Loading
2020Novel technique for loading ELF binaries with enhanced anti-forensic capabilities, demonstrating generation of static PIE files with single loadable segments for shellcode-like execution without ELF headers.
SHELF encounters of the elements kind
2022Exploitation of V8 vulnerability (CVE-2020-6418) to achieve reflective loading of ELF binaries in Chrome, demonstrating deployment of SHELF payloads within browser renderer processes without execve syscalls.