I spend a lot of time thinking about the offensive security of systems at the lowest levels — kernels, hypervisors, and the boundaries between them. I use this site to share research, notes, and findings that might be useful to others working on similar problems.
Bidirectional silent audio injection between host and guest VMs via PipeWire/SPICE. CVE candidate under responsible disclosure.
Covert channel research exploiting Linux desktop audio subsystems for stealthy data exfiltration.
Kernel-level logging framework for low-level event capture and analysis.
eBPF-based process monitoring tool for runtime behavioral analysis.
Custom OSINT-focused Linux distribution built for intelligence gathering workflows.
A custom virtual machine monitor implementation in Rust using the Linux KVM API, covering guest memory layout and exit handling.