About me

A small open source security researcher and contributor. Containers and GNU/Linux were the focus of my research.

This website contains the results of my research.

Sorry for the inconvenience. I am not a native English speaker; if you see any errors, please let me know!

Short Blog

• 2021-11-11 - HardenedOS Community: Welcome to contribute

• 2020-03-12 - Cloud Native Security: Container Security Practice

• 2018-06-26 - Kernel Security Story: Against code reuse attacks —— CET

• 2017-06-16 - CVE-2017-8890: Use-after-free in ip_mc-drop_socket in Linux Kernel called Phoenix Talon

• 2017-03-24 - CVE-2017-7187: Stack-based Overflow Vulnerability in the SCSI Subsystem of Analysis

• 2015-12-08 - CVE-2015-8088: Heap-based Overflow Vulnerability in the HiFI Driver of Huawei Smart Phone

• 2015-10-11 - CVE-2015-5706: Use-after-free Vulnerability in the path_openat function of Analysis

• 2015-07-20 - Hacking Team: The Linux RCS Backdoor of Analysis

• 2015-06-29 - The Lechange Smart Camera Vulnerabilities

• 2014-09-08 - CVE-2010-3301: The exploit of Analysis

• 2013-01-20 - KASLR in Linux Kernel

• 2012-12-18 - Linux Process

• 2012-08-28 - Bypass Modsecurity with HTTP Parser

• 2012-03-12 - WAF Bypass with HTTP Protocal

Presentations

• A Short Story: SMEP Bypass on Linux

Summary: I gave a presentation with devlop GNU/Linux exploit SMEP bypass.

March 2017 - PEDIY WorkShop, Beijing, China [event]

• Code Audit: A Way to Find Vulns of Android Kernel

Summary: Bestshow and I gave a presentation on code audit against android kernel. I talk about used different modes of thinking to review code. Finally, I has a vuln(found by this way) to exploit it.

November 2015 - Cyber Security Summit, Beijing, China [event]

Vulnerabilities publicly disclosed

• CVE-2017-8890 - Linux Kernel - Use-after-free in ip_mc-drop_socket [Advisory]
• CVE-2015-8088 - Huaiwei Mate 7 - Heap-based buffer overflow in the HIFI driver [PoC]