About — Cybersecurity Research

hackdog.me is a cybersecurity research platform covering vulnerability analysis, exploit development, IoT device security, supply chain attacks, and offensive security techniques.

Published CVEs

CVE-2017-8768 — Atlassian Sourcetree arbitrary command execution
CVE-2017-2486 — WebKit URL bar spoofing (Apple Safari)
CVE-2017-2488 — WebKit Same-Origin Policy bypass
CVE-2016-9179 — Lynx invalid URL parsing
CVE-2016-7976 — GhostScript sandbox bypass → ImageMagick RCE
CVE-2016-6525 — MuPDF heap overflow

Talks & Papers

A Ghost from PostScript — Ruxcon 2017
Attack Surface Extended by URL Schemes — HITB
Hacking IPCAM like Harold in POI — QCon