Posts

All the articles I've posted.

• The Story of KurtLar_SCADA.exe

  Updated:Apr 8, 2025 |  at 04:05 PM

  Check out my research in uncovering and analyzing a malware named KurtLar_SCADA.exe, a VNC remote access capability targeting Internet-exposed and poorly secured industrial HMIs. This research was covered in a webinar hosted by SANS ICS. Big thanks to them for having me!

• Public Research

  Updated:Apr 8, 2025 |  at 11:43 AM

  Please see this page for complete listing of public research in the form of blogs, whitepapers, and webinars.

• DLL Hijacking Whitepaper

  Published:Feb 8, 2025 |  at 01:05 AM

  Check out a whitepaper I wrote on DLL hijacking - a flexible and commonly used attack technique.

• The Fuxnet Malware

  Published:Dec 14, 2024 |  at 11:05 AM

  Read Dragos'public intelligence report on the 8th ICS-specific malware, co-written by me and Bryce Livingston.

• CVEs Discovered

  Published:Jul 15, 2024 |  at 03:15 PM

  Please see this page for exhaustive list of discovered and disclosed vulnerabilities.

• PLC Password Cracking Malware

  Published:Jul 14, 2024 |  at 06:05 PM

  Read about my research on PLC password cracking software being sold online. Turns out, it also gives you a Sality malware infection. This research was covered in major tech journals!