Windows Software Vulnerability Exploitation
Vulnerability research & exploitation on Windows applications
- Period: Sep 2023 — Feb 2024
- Tools: WinDbg, IDA, Pwndbg, Fuzzer, x86-64 Assembly
- URL:
- Targeted Windows applications (viewer, media player, compression software); performed static/dynamic analysis and fuzzing to uncover issues.
- Identified stack/heap buffer overflows leading to remote code execution; developed PoCs and triaged root causes.
- Responsibly disclosed three CVE-registered vulnerabilities via ZDI (CVE-2024-11510, CVE-2024-11511, CVE-2024-11512) and coordinated vendor patch releases.