Alexandre Borges
@alexandreborges.bsky.social
Vulnerability Researcher | Exploit Developer (speaker 3x at DEF CON)
Pinned
The sixth article in the Exploiting Reversing Series (ERS), "A Deep Dive Into Exploiting a Minifilter Driver (N-day)", a 251-page article provides a comprehensive look at a past vulnerability in a mini-filter driver, is available:
exploitreversing.com/2026/02/11/e...
#exploit #vulnerability
exploitreversing.com/2026/02/11/e...
#exploit #vulnerability
The sixth article in the Exploiting Reversing Series (ERS), "A Deep Dive Into Exploiting a Minifilter Driver (N-day)", a 251-page article provides a comprehensive look at a past vulnerability in a mini-filter driver, is available:
exploitreversing.com/2026/02/11/e...
#exploit #vulnerability
exploitreversing.com/2026/02/11/e...
#exploit #vulnerability
February 11, 2026 at 5:55 PM
The sixth article in the Exploiting Reversing Series (ERS), "A Deep Dive Into Exploiting a Minifilter Driver (N-day)", a 251-page article provides a comprehensive look at a past vulnerability in a mini-filter driver, is available:
exploitreversing.com/2026/02/11/e...
#exploit #vulnerability
exploitreversing.com/2026/02/11/e...
#exploit #vulnerability
This presentation remains the go-to reference for learning the inner workings of the IDA Pro Hex-Rays decompiler:
(video) www.youtube.com/watch?v=T-Yk...
(article) i.blackhat.com/us-18/Thu-Au...
#decompiler #reverseengineer #informationsecurity #cybersecurity
(video) www.youtube.com/watch?v=T-Yk...
(article) i.blackhat.com/us-18/Thu-Au...
#decompiler #reverseengineer #informationsecurity #cybersecurity
Decompiler Internals: Microcode
YouTube video by Black Hat
www.youtube.com
February 9, 2026 at 12:31 AM
This presentation remains the go-to reference for learning the inner workings of the IDA Pro Hex-Rays decompiler:
(video) www.youtube.com/watch?v=T-Yk...
(article) i.blackhat.com/us-18/Thu-Au...
#decompiler #reverseengineer #informationsecurity #cybersecurity
(video) www.youtube.com/watch?v=T-Yk...
(article) i.blackhat.com/us-18/Thu-Au...
#decompiler #reverseengineer #informationsecurity #cybersecurity
[Cryptodev-linux] Page-level UAF exploitation:
nasm.re/posts/crypto...
#linux #cybersecurity #informationsecurity #uaf #exploitation #vulnerability
nasm.re/posts/crypto...
#linux #cybersecurity #informationsecurity #uaf #exploitation #vulnerability
[Cryptodev-linux] Page-level UAF exploitation
IntroductionIn november 2025 I started a fuzzing campaign against cryptodev-linux as part of a school project. I found +10 bugs (UAF, NULL pointer dereferences and integer overflows) and among all of
nasm.re
February 8, 2026 at 1:45 PM
[Cryptodev-linux] Page-level UAF exploitation:
nasm.re/posts/crypto...
#linux #cybersecurity #informationsecurity #uaf #exploitation #vulnerability
nasm.re/posts/crypto...
#linux #cybersecurity #informationsecurity #uaf #exploitation #vulnerability
TP-Link ER605 DDNS Pre-Auth RCE: Chaining CVE-2024-5242, CVE-2024-5243, CVE-2024-5244:
oobs.io/posts/er605-...
#exploit #vulnerability #rce #informationsecurity #cybersecurity #infosec
oobs.io/posts/er605-...
#exploit #vulnerability #rce #informationsecurity #cybersecurity #infosec
February 8, 2026 at 1:20 PM
TP-Link ER605 DDNS Pre-Auth RCE: Chaining CVE-2024-5242, CVE-2024-5243, CVE-2024-5244:
oobs.io/posts/er605-...
#exploit #vulnerability #rce #informationsecurity #cybersecurity #infosec
oobs.io/posts/er605-...
#exploit #vulnerability #rce #informationsecurity #cybersecurity #infosec
Before Vegas: The “Red Hackers” Who Shaped China’s Cyber Ecosystem:
ethz.ch/content/dam/...
#cybersecurity #redteam #informationsecurity #threathunting #exploitation #infosec
ethz.ch/content/dam/...
#cybersecurity #redteam #informationsecurity #threathunting #exploitation #infosec
January 28, 2026 at 12:20 AM
Before Vegas: The “Red Hackers” Who Shaped China’s Cyber Ecosystem:
ethz.ch/content/dam/...
#cybersecurity #redteam #informationsecurity #threathunting #exploitation #infosec
ethz.ch/content/dam/...
#cybersecurity #redteam #informationsecurity #threathunting #exploitation #infosec
Reposted by Alexandre Borges
Malwoverview 7.0 has been released:
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
January 20, 2026 at 4:35 PM
Malwoverview 7.0 has been released:
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
Malwoverview 7.0 has been released:
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
January 20, 2026 at 4:35 PM
Malwoverview 7.0 has been released:
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
github.com/alexandrebor...
This version introduces a new vulnerability-focused approach, and the first feature is NIST support, which allows listing and searching for registered vulnerabilities.
#vulnerabilities #cve #cybersecurity #informationsecurity
Phantom Grid:
Phantom Grid is an enterprise-grade, kernel-level active defense system that transforms Linux servers into a controlled, deceptive attack surface.
github.com/haidang-info...
#kernel #linux #honeypot #informationsecurity #cybersecurity #defense #ebpf
Phantom Grid is an enterprise-grade, kernel-level active defense system that transforms Linux servers into a controlled, deceptive attack surface.
github.com/haidang-info...
#kernel #linux #honeypot #informationsecurity #cybersecurity #defense #ebpf
January 16, 2026 at 6:01 PM
Phantom Grid:
Phantom Grid is an enterprise-grade, kernel-level active defense system that transforms Linux servers into a controlled, deceptive attack surface.
github.com/haidang-info...
#kernel #linux #honeypot #informationsecurity #cybersecurity #defense #ebpf
Phantom Grid is an enterprise-grade, kernel-level active defense system that transforms Linux servers into a controlled, deceptive attack surface.
github.com/haidang-info...
#kernel #linux #honeypot #informationsecurity #cybersecurity #defense #ebpf
Achieving remote code execution in LangSmith Playground using unsafe template formatting:
lab.ctbb.show/research/lan...
#webapp #exploit #exploitation #infosec #informationsecurity #cybersecurity #ai
lab.ctbb.show/research/lan...
#webapp #exploit #exploitation #infosec #informationsecurity #cybersecurity #ai
January 13, 2026 at 1:50 PM
Achieving remote code execution in LangSmith Playground using unsafe template formatting:
lab.ctbb.show/research/lan...
#webapp #exploit #exploitation #infosec #informationsecurity #cybersecurity #ai
lab.ctbb.show/research/lan...
#webapp #exploit #exploitation #infosec #informationsecurity #cybersecurity #ai
Dangling pointers, fragile memory – from an undisclosed vulnerability to a Pixel 9 Pro escalation:
dawnslab.jd.com/Pixel_9_Pro_...
#android #vulnerability #eop #cybersecurity #infosec #informationsecurity #cve
dawnslab.jd.com/Pixel_9_Pro_...
#android #vulnerability #eop #cybersecurity #infosec #informationsecurity #cve
January 12, 2026 at 5:54 PM
Dangling pointers, fragile memory – from an undisclosed vulnerability to a Pixel 9 Pro escalation:
dawnslab.jd.com/Pixel_9_Pro_...
#android #vulnerability #eop #cybersecurity #infosec #informationsecurity #cve
dawnslab.jd.com/Pixel_9_Pro_...
#android #vulnerability #eop #cybersecurity #infosec #informationsecurity #cve
CVE-2025-32432: Unauthenticated Remote Code Execution in Craft CMS:
www.opswat.com/blog/cve-202...
#exploitation #cms #vulnerability #cybersecurity #informationsecurity #cve
www.opswat.com/blog/cve-202...
#exploitation #cms #vulnerability #cybersecurity #informationsecurity #cve
CVE-2025-32432: Craft CMS RCE Vulnerability Explained - OPSWAT
Learn about CVE-2025-32432 in Craft CMS—how the remote code execution vulnerability works, affected versions, exploitation details, and mitigation steps.
www.opswat.com
January 12, 2026 at 2:00 PM
CVE-2025-32432: Unauthenticated Remote Code Execution in Craft CMS:
www.opswat.com/blog/cve-202...
#exploitation #cms #vulnerability #cybersecurity #informationsecurity #cve
www.opswat.com/blog/cve-202...
#exploitation #cms #vulnerability #cybersecurity #informationsecurity #cve
Blind trust: what is hidden behind the process of creating your PDF file?
swarm.ptsecurity.com/blind-trust-...
#vulnerability #cve #exploitation #infosec
swarm.ptsecurity.com/blind-trust-...
#vulnerability #cve #exploitation #infosec
Blind trust: what is hidden behind the process of creating your PDF file?
Every day, thousands of web services generate PDF (Portable Document Format) files—bills, contracts, reports. This step is often treated as a technical routine, “just convert the HTML,” but in practic...
swarm.ptsecurity.com
December 30, 2025 at 2:22 AM
Blind trust: what is hidden behind the process of creating your PDF file?
swarm.ptsecurity.com/blind-trust-...
#vulnerability #cve #exploitation #infosec
swarm.ptsecurity.com/blind-trust-...
#vulnerability #cve #exploitation #infosec
MongoBleed explained simply:
bigdata.2minutestreaming.com/p/mongobleed...
#exploit #exploitation #cve #vulnerability #mongodb #informationsecurity #infosec
bigdata.2minutestreaming.com/p/mongobleed...
#exploit #exploitation #cve #vulnerability #mongodb #informationsecurity #infosec
December 29, 2025 at 6:24 PM
MongoBleed explained simply:
bigdata.2minutestreaming.com/p/mongobleed...
#exploit #exploitation #cve #vulnerability #mongodb #informationsecurity #infosec
bigdata.2minutestreaming.com/p/mongobleed...
#exploit #exploitation #cve #vulnerability #mongodb #informationsecurity #infosec
From Coverage to Causes: Data-Centric Fuzzing for JavaScript Engines:
(paper) arxiv.org/pdf/2512.18102
(project) github.com/KKGanguly/Da...
#fuzzing #vulnerability #javascript #exploitation #llm
(paper) arxiv.org/pdf/2512.18102
(project) github.com/KKGanguly/Da...
#fuzzing #vulnerability #javascript #exploitation #llm
December 27, 2025 at 1:07 AM
From Coverage to Causes: Data-Centric Fuzzing for JavaScript Engines:
(paper) arxiv.org/pdf/2512.18102
(project) github.com/KKGanguly/Da...
#fuzzing #vulnerability #javascript #exploitation #llm
(paper) arxiv.org/pdf/2512.18102
(project) github.com/KKGanguly/Da...
#fuzzing #vulnerability #javascript #exploitation #llm
Callback hell: abusing callbacks, tail-calls, and proxy frames to obfuscate the stack:
klezvirus.github.io/posts/Callba...
#cybersecurity #infosec #windows #reverseengineering #programming
klezvirus.github.io/posts/Callba...
#cybersecurity #infosec #windows #reverseengineering #programming
December 23, 2025 at 5:26 PM
Callback hell: abusing callbacks, tail-calls, and proxy frames to obfuscate the stack:
klezvirus.github.io/posts/Callba...
#cybersecurity #infosec #windows #reverseengineering #programming
klezvirus.github.io/posts/Callba...
#cybersecurity #infosec #windows #reverseengineering #programming
Announcing hardware-accelerated BitLocker:
techcommunity.microsoft.com/blog/windows...
#crypto #cybersecurity #infosec #informationsecurity #hacking #bitlocker
techcommunity.microsoft.com/blog/windows...
#crypto #cybersecurity #infosec #informationsecurity #hacking #bitlocker
Announcing hardware-accelerated BitLocker - Windows IT Pro Blog
BitLocker takes advantage of the latest and modern SoC and CPU capabilities for better performance and security.
techcommunity.microsoft.com
December 23, 2025 at 3:51 AM
Announcing hardware-accelerated BitLocker:
techcommunity.microsoft.com/blog/windows...
#crypto #cybersecurity #infosec #informationsecurity #hacking #bitlocker
techcommunity.microsoft.com/blog/windows...
#crypto #cybersecurity #infosec #informationsecurity #hacking #bitlocker
$5 Prompt Finds $2,418 Vulnerability:
new-blog.ch4n3.kr/llm-found-se...
#cybersecurity #vulnerability #infosec #informationsecurity #bug
new-blog.ch4n3.kr/llm-found-se...
#cybersecurity #vulnerability #infosec #informationsecurity #bug
How I Found a $2,418 Vulnerabilities with a $5 Prompt
Hi I'm Seokchan Yoon. Currently working for blockchain security audit company Zellic.io and also a member of the security team of Apache Foundation's Airflow project
Two months ago, I've twitted by s...
new-blog.ch4n3.kr
December 22, 2025 at 2:27 PM
$5 Prompt Finds $2,418 Vulnerability:
new-blog.ch4n3.kr/llm-found-se...
#cybersecurity #vulnerability #infosec #informationsecurity #bug
new-blog.ch4n3.kr/llm-found-se...
#cybersecurity #vulnerability #infosec #informationsecurity #bug
A look at an Android ITW DNG exploit:
projectzero.google/2025/12/andr...
#android #exploit #vulnerability #cybersecurity #informationsecurity
projectzero.google/2025/12/andr...
#android #exploit #vulnerability #cybersecurity #informationsecurity
December 21, 2025 at 2:05 PM
A look at an Android ITW DNG exploit:
projectzero.google/2025/12/andr...
#android #exploit #vulnerability #cybersecurity #informationsecurity
projectzero.google/2025/12/andr...
#android #exploit #vulnerability #cybersecurity #informationsecurity
godap: A complete TUI for LDAP.
github.com/Macmod/godap
#ldap #cybersecurity #informationsecurity #hacking #redteam
github.com/Macmod/godap
#ldap #cybersecurity #informationsecurity #hacking #redteam
December 17, 2025 at 2:03 PM
godap: A complete TUI for LDAP.
github.com/Macmod/godap
#ldap #cybersecurity #informationsecurity #hacking #redteam
github.com/Macmod/godap
#ldap #cybersecurity #informationsecurity #hacking #redteam
Extending Kernel Race Windows Using '/dev/shm':
faith2dxy.xyz/2025-11-28/e...
#kernel #linux #exploitation #cybersecurity #infosec #informationsecurity
faith2dxy.xyz/2025-11-28/e...
#kernel #linux #exploitation #cybersecurity #infosec #informationsecurity
Extending Kernel Race Windows Using '/dev/shm'
Recently, I came across this kernelCTF submission where the author mentions a novel technique for extending race windows in the Linux kernel: I learned…
faith2dxy.xyz
December 16, 2025 at 12:53 AM
Extending Kernel Race Windows Using '/dev/shm':
faith2dxy.xyz/2025-11-28/e...
#kernel #linux #exploitation #cybersecurity #infosec #informationsecurity
faith2dxy.xyz/2025-11-28/e...
#kernel #linux #exploitation #cybersecurity #infosec #informationsecurity
A look at an Android ITW DNG exploit:
googleprojectzero.blogspot.com/2025/12/a-lo...
#android #exploit #vulnerability #zeroclick #exploitation #mobilesecurity
googleprojectzero.blogspot.com/2025/12/a-lo...
#android #exploit #vulnerability #zeroclick #exploitation #mobilesecurity
December 13, 2025 at 1:07 PM
A look at an Android ITW DNG exploit:
googleprojectzero.blogspot.com/2025/12/a-lo...
#android #exploit #vulnerability #zeroclick #exploitation #mobilesecurity
googleprojectzero.blogspot.com/2025/12/a-lo...
#android #exploit #vulnerability #zeroclick #exploitation #mobilesecurity
React2Shell Exploits on GitHub:
www.vulncheck.com/blog/react2s...
#react2shell #exploit #exploitation #cybersecurity #cve #vulnerability #nodejs
www.vulncheck.com/blog/react2s...
#react2shell #exploit #exploitation #cybersecurity #cve #vulnerability #nodejs
React2Shell Exploits on GitHub | Blog | VulnCheck
VulnCheck reviewed the full wave of React2Shell exploits published on GitHub, discarding about half as broken or misleading and surfacing several genuinely interesting techniques from the rest. We cur...
www.vulncheck.com
December 12, 2025 at 4:57 PM
React2Shell Exploits on GitHub:
www.vulncheck.com/blog/react2s...
#react2shell #exploit #exploitation #cybersecurity #cve #vulnerability #nodejs
www.vulncheck.com/blog/react2s...
#react2shell #exploit #exploitation #cybersecurity #cve #vulnerability #nodejs
No Leak, No Problem - Bypassing ASLR with a ROP Chain to Gain RCE;
modzero.com/en/blog/no-l...
#exploitation #cve #rce #rop #aslr #arm #iot
modzero.com/en/blog/no-l...
#exploitation #cve #rce #rop #aslr #arm #iot
No Leak, No Problem - Bypassing ASLR with a ROP Chain to Gain RCE
modzero.com
December 11, 2025 at 12:50 AM
No Leak, No Problem - Bypassing ASLR with a ROP Chain to Gain RCE;
modzero.com/en/blog/no-l...
#exploitation #cve #rce #rop #aslr #arm #iot
modzero.com/en/blog/no-l...
#exploitation #cve #rce #rop #aslr #arm #iot
N-Able Windows Software Probe Remote Code Execution:
www.securifera.com/blog/2025/12...
#dotnet #vulnerability #windows #hacking #exploitation #infosec #informationsecurity
www.securifera.com/blog/2025/12...
#dotnet #vulnerability #windows #hacking #exploitation #infosec #informationsecurity
N-Able (Formerly SolarWinds MSP) Windows Software Probe Remote Code Execution (CVE-2025-11367)
N-Able Windows Software Probe Remote Code Execution
Recently I was performing a penetration test using Reverge when an interesting service caught my attention. The banner reported “ms .net remoting s...
www.securifera.com
December 4, 2025 at 11:15 PM
N-Able Windows Software Probe Remote Code Execution:
www.securifera.com/blog/2025/12...
#dotnet #vulnerability #windows #hacking #exploitation #infosec #informationsecurity
www.securifera.com/blog/2025/12...
#dotnet #vulnerability #windows #hacking #exploitation #infosec #informationsecurity