Publications

Poster: Referencing Your Privileges – A Data-Only Exploit Technique for the Windows Kernel 10.1007/978-3-031-97623-0_15

Presentations

• Overkill: Hijacking a Firmware to Attack the Windows Kernel TyphoonCon

• Crack, Inject, Exploit: Firmware from an Attacker’s Perspective Qualcomm Product Security Summit

• (Mis)adventures with Copilot+: Attacking and Exploiting Windows NPU Drivers Blackhat Asia

CVEs

Qualcomm

• CVE-2026-25266, CVE-2025-27069, CVE-2024-53033, CVE-2024-53034

AMD

• CVE-2025-48518, CVE-2024-36324, CVE-2024-36316, CVE-2024-36337, CVE-2024-36328, CVE-2024-36336, CVE-2024-36352

Intel

• CVE-2025-20018, CVE-2025-20071

MediaTek

• CVE-2026-20436, CVE-2026-20423, CVE-2025-20728, CVE-2025-20740