I originally prepared this bug for Pwn2Own Berlin. A few days before the contest, a CVE got assigned. So, here is my technical analysis and exploitation strategy for CVE-2026-40369: a 12-byte kernel increment, exploitable both as an LPE and SBX. voidsec.com/cve-2026-40369-b…

I wasn't too far off when I said the tokenomics would stop making sense pretty quickly, and that the real investment should be in the ability to run local models... anthropic.com/news/claude-fa…

Love the timing of MSRC alienating the entire vuln research community while AI makes finding/exploiting bugs cheaper than a Netflix subscription. What a truly visionary threat model

The wait is over! mona v3 is now available. Supports Python 2 & 3, 32- and 64-bit targets, WinDBG/WinDBGX. Faster, leaner, broader built for modern Windows debugging and exploit development. #mona #corelan github.com/corelan/mona3 Sharing is caring 💛

100%, true experience

Red team friends, show some love!

Ooh, guardrails have been lifted!

I’ve been grinding hard on AI for the better part of the last 8 months - learning, building, adapting, and pulling late nights just like so many others right now. Cutting through the FUD and hype, there is real potential here. Industry-breaking potential. The era we’ve been waiting for - to finally supercharge and develop the tools and platforms we’ve wanted to build for years - is here, and agent assistance is accelerating everything. With coding agents, I’ve built solid tools and had research breakthroughs that would have taken weeks or months before. These should feel like real wins worth celebrating. But honestly? I don’t feel victorious. In many ways, it just feels necessary to keep pace. As Dave said: adapt or be left behind - and for good reason. I’m not ready to be left behind. But damn, I’m tired. I’m tired of constantly reinventing myself. Tired of constantly re-tooling. Tired of the endless cycle of keeping up, the late nights, and the personal sacrifices that come with it. I’ve even lost the desire to share knowledge and research with the community the way I used to. From the conversations I’ve had, I’m far from alone - many others in this space feel the same but don’t necessarily vocalize it outside of smaller circles. Is it because I see AI purely as a threat? Not really. The offensive side of our industry has been heading this way for a while, and I’ve been moving with it. The truth is, the excitement Dave describes is real - but for me right now, it’s mixed with exhaustion. I’m grateful for the breakthroughs, yet I catch myself wondering how long I can sustain this level of constant reinvention without something giving. The early-2000s energy is back, sure… but so is the burnout that often came with it. Being a bit older now, with young kids at home, the pace hits differently. I don’t have the same endless energy I once did, and the late nights and constant context-switching carry a heavier weight. Finding balance is tough, but it feels more important than ever. Hopefully we can all figure out how to ride this wave more sustainably - without burning out in the process.

Proud to be a sponsor!

We appreciate @crowdfense's continued support to Offensivecon as a Silver Sponsor!

Coming in Q2 for some of our selected clients :)

Patch diffing RCA for clfs.sys can awhile. I gave the diff binary to a local LLM. It mapped the UAF path, race condition, all IOCTLs in <20 min LLMs don't replace the work, they are momentum. New blog post following the UAF trail of CVE-2025-29824: clearbluejar.github.io/posts…

Samstung Part 2 :: Remote Code Execution in MagicINFO 9 Server srcincite.io/blog/2026/01/28…

Samstung Part 1 :: Remote Code Execution in MagicINFO 9 Server srcincite.io/blog/2026/01/28…

Building MCPs to leverage our n-day feed, interesting experience and some very promising results so far

Blog post: On the Coming Industrialisation of Exploit Generation with LLMs sean.heelan.io/2026/01/18/on… TL;DR: I ran an experiment with GPT-5.2 and Opus 4.5 based agents to generate exploits for a zeroday QuickJS bug. They're pretty good at it. Code: github.com/SeanHeelan/anamne…

I wrote about a file format for Unreal Engine 2 games which for the last 20 years has inadvertently hidden game assets from data miners... until now :) landaire.net/a-file-format-u…