About Me
Rome was not built in a day — and neither was any person worth knowing.
I go by Cyberdev, I am an offensive security researcher, operating somewhere between the kernel and the edge of what I currently understand. That edge moves every day. I chase it.
I did not arrive here with a roadmap. I arrived here with curiosity that refused to be satisfied by surface-level answers, and a stubbornness that would not let me stop at “it works” without also understanding “why.” That combination of curiosity and stubbornness is the only credential that has ever mattered to me.
I work on kernel vulnerabilities, mostly that of Linux. I build tools that reason about exploitation. I study how things break at the lowest level of software so that I understand, genuinely understand, what security means when the abstraction is stripped away. Honestly, this is not easy work. Most days it humbles me. That is exactly why I do it.
But here is the part I need you to hear: I am not different from you, nor anybody else. I do not have gifts you were not given. I have hours invested in things that confused me, sessions that ended in frustration, and mornings where I came back anyway. That is all expertise ever is. Time, honesty, and the decision to return.
I share everything I learn here, not to demonstrate how far I have come, but to show you that the road exists and that someone is walking it right now, in real time, with you.
Currently Building
KERNEX, an AI-assisted kernel exploitation reasoning system. Documenting every step of the build publicly.
A project with Mazon as collaborator
Research Focus (Project)
Linux kernel exploitation · UAF vulnerability analysis (for now) · Heap exploitation techniques · Offensive security tooling
Find Me
One way you’re sure to get to me is on 𝕏(Twitter) or via LinkedIn
Another way to get me in on Substack. I share a lot of ongoing work there and more field-related realities as well.
It’s not everyday that we see people in such field post a lot about their workflow, perhaps due to the less number of people that show interest. Honestly i don’t think about that. People are genuingly currious to know how some things work, if only someone could carry them along.
So my Substack is more like A day in the life of an Offensive Security Researcher
⚠️ Legal Disclaimer
All content on this site is published for educational purposes only. Read the full disclaimer below before proceeding.
Let me be straightforward with you.
Everything I post here — writeups, code, research notes, exploit analysis, tools — exists because I believe that knowledge shared openly makes this field stronger and safer for everyone. That is the only reason this site exists.
It is not here to help you break into systems you do not own. It is not here to give you shortcuts to cause harm. And it is certainly not here to be your alibi.
By reading this site, you agree to the following:
You will not take any code, technique, concept, or information from this site and use it against any system, network, or individual without the full, explicit, written permission of whoever owns it. No exceptions. No grey areas.
You understand that offensive security knowledge is a responsibility — not a toy. What I share here is meant to build understanding, sharpen defence, and advance the field. The moment you use it to harm someone or something, you have violated the spirit of everything this site stands for.
You are an adult who understands that laws exist, that they vary by country, and that ignorance is not a defence in any court anywhere in the world. I do not know where you are reading this from. I do not know what your intentions are. What I do know is that I cannot be held responsible for what you choose to do with what you read here.
I reproduce and analyse publicly disclosed vulnerabilities and CVEs. I build tools to reason about exploitation. I do this in controlled, authorized environments. None of this is an invitation for you to do the same on systems that do not belong to you.
If you are here to learn — genuinely, seriously, ethically — then welcome. Pull up a chair. There is a lot of work to do together.
If you are not here in that spirit, close the tab.
All opinions and research on this site are my own.
Cultivate your passion like a craft, not a performance. The work done in private, for the love of understanding, is the work that lasts. Cyberdev