Enjoyer of hypervisors, windows kernel, static binary analysis, participating in CTFs and security research.
Joined September 2025
- Tweets 35
- Following 139
- Followers 80
- Likes 136
2 Photos and videos
vmpr0be retweeted
Got my first full VM escape
5
33
568
31,376
vmpr0be retweeted
Special thanks to the organizing team and challenge author: @C15C01337 @bhprdp01 @0xUN7H1NK4BLE @prashantstha17 @StructHack @vmpr0be
See you in the next CTF. š©š«”
#HackAstra2026 #CTF #CyberSecurity #EthicalHacking #HackaSec #CaptureTheFlag
1
2
68
Authoring pwn for Hacką¤
ą¤øą„ą¤¤ą„ą¤° CTF (ctftime.org/event/3270), it starts tomorrow!
1
39
We are happy to share our ai-free (lol) research on the decade old ReDoS topic, we go through a couple findings, for example if you use IsPhoneNumber decorator in say your nestjs application, your currently trivially vulnerable to getting your server š„¶
mwlik.github.io/2026-04-15-rā¦
4
4
21
1,570
I did some vulnerability research on bareiron minecraft server project and found 3 vulnerabilities which resulted in RCE:
CVE-2025-69806
CVE-2025-69808
CVE-2025-69809
youtube.com/watch?v=LLTLZ_Noā¦
8
12
117
12,042
vmpr0be retweeted
Feb 23
I started working on a small side project:
github.com/momo5502/levo
It's an ahead-of-time binary translation toolchain.
It transpiles windows binaries to any other OS/platform.
It is super limited right now, but managed to translate a 32 bit windows binary to x86_64 linux š„³
8
18
157
8,774
vmpr0be retweeted
Jan 26
At #Pwn2Own Berlin 2025, a full exploit chain against VMware Workstation was demonstrated via a heap overflow in the PVSCSI controller.
Despite Windows 11 LFH mitigations, advanced heap shaping and side-channel techniques enabled a reliable exploit.
š Full technical write-up š
synacktiv.com/en/publicationā¦
4
150
531
49,676
Last weekend at UofTCTF 2026, we cleared all the challenges and took 1st placeš„in our first CTF of 2026! Huge thanks to @uoftctf for the high-quality and super fun problems. Congrats as well to @ProjectSEKAIctf for 2nd placeš„and @FlatNetworkOrg for 3rd placeš„See you next year
2
44
3,455
A year late "not bad", but here is the written version of the talk I gave during the last @hackthebox_eu & @42_berlin & @thelitesecurity meetup in Ben Guerir, titled "Browser Exploitation Primer".
P.S: Don't expect anything fancy.
mwlik.github.io/2025-05-15-bā¦
2
2
8
721
We became champions by finishing in 1st place at CyberOdyssey CTF 2025, organized by @akasec_1337.
pwn stats:
š4/4 solved.
š©ø3/4 first bloods.
š©2/4 only solved by me.
1
166
Writeup for the blackbox challenge pwn/printful in BuckeyeCTF 2025. You might learn something:
vmpr0be.com/post/buckeye_priā¦
154
An interesting challenge where I found an unintended solution which was to trick the disassembler (capstone) into thinking an instruction is invalid when it is valid by the CPU allowing to bypassing the instruction filter.
vmpr0be.com/post/securinets_ā¦
162
Recently posted my first post about SMM/IPI challenge: vmpr0be.com/post/crewctf_smmā¦
1
146