KalemSec
2025
- From SSTI to SSTI to RCE - Bypassing Thymeleaf sandbox <= 3.1.3.RELEASE
- CVE-2025-0001
- VPN-in-the-browser
2024
- Exploiting CVE-2024-37148
- Exploiting CVE-2024-29889 and CVE-2024-31456
- Exploiting CVE-2024-27096
- CVE-2024-27937 - CVE-2024-27930 - Walkthrough
2023
- From SSRF to authentication bypass
- Hidden in plain sight - Part 2
- Hidden in plain sight
- Tiny File Manager - There's no place like home
- I want to talk to your managed code
- Qakbot JScript dropper analysis
- CVE-2023-3064, CVE-2023-3065, and CVE-2023-3066
- CVE-2023-3031
- CVE-2023-3032
- CVE-2023-3033
- FuckFastCGI made simpler
- PHP .user.ini risks
- PHP open_basedir bypass
2020
- Attacking Android Accessibility Service (AAS) - Part I
- Attacking Android Accessibility Service (AAS) - Part II
- Attacking Android Accessibility Service (AAS) - Part III
- Attacking Android Accessibility Service (AAS) - Part IV
- Diving into dsencrypt - Android malware analysis
- Diving into ruMMS - Android malware analysis
- Diving into Sberbank Android banker - Android malware analysis
- Diving into SLocker - Android malware analysis
- Diving into Viking Horde - Android malware analysis
- Self modifying C program - Metamorphic (Basic)
- Self modifying C program - Polymorphic
- Practical attacks against mobile browsers using extensions