Shahriyar Jalayeri
Home
About
Blog
Resources
oldblog
Reducing Code Coverage Overhead using "Disposable Probes" (Fuzzing) - 21 Mar 2018
Improving Coverage Guided Fuzzing Using Simple Static Analysis - 01 May 2017
Fuzzing and Instrumenting Windows Kernel - 27 Apr 2017
Write up for Iranian Society of Cryptology CTF - 08 Sep 2015
Defeating Windows Kernel Driver Singing Enforcement - 04 Nov 2012
Introducing Pwnypot - Deteting Drive-By-Download Zerodays - 25 Sep 2012
Exploting Windows Kernel/Intel x64 SYSRET Vulnerability - 25 Aug 2012
Bypassing Award-Winning ($50k) EMET 3.5's ROP Mitigations - 08 Aug 2012
exploiting
Linux Kernel Vulnerability Lurking for ~20 Years - 04 Oct 2025
Text Steganography In Farsi/Arabic Language - 01 Feb 2015
Multiple Vulnerabilities in Padvish Antivirus Kernel Driver - 27 Sep 2014
Noroi - Polymorphic Decoder Generator for Shellcodes - 26 Mar 2014
Defeating Windows Kernel Driver Singing Enforcement - 04 Nov 2012
Introducing Pwnypot - Deteting Drive-By-Download Zerodays - 25 Sep 2012
Exploting Windows Kernel/Intel x64 SYSRET Vulnerability - 25 Aug 2012
Bypassing Award-Winning ($50k) EMET 3.5's ROP Mitigations - 08 Aug 2012
kernel
Linux Kernel Vulnerability Lurking for ~20 Years - 04 Oct 2025
Fuzzing and Instrumenting Windows Kernel - 27 Apr 2017
Multiple Vulnerabilities in Padvish Antivirus Kernel Driver - 27 Sep 2014
Exploting Windows Kernel/Intel x64 SYSRET Vulnerability - 25 Aug 2012
re
Write up for Iranian Society of Cryptology CTF - 08 Sep 2015
Noroi - Polymorphic Decoder Generator for Shellcodes - 26 Mar 2014
fuzzing
Algorithm for Constructing Grammar Graph (Fuzzing) - 24 May 2022
Optimizing LibFuzzer Mutator Selection with Multi-Armed Bandits - 11 Nov 2019
Reducing Code Coverage Overhead using "Disposable Probes" (Fuzzing) - 21 Mar 2018
Improving Coverage Guided Fuzzing Using Simple Static Analysis - 01 May 2017
Fuzzing and Instrumenting Windows Kernel - 27 Apr 2017
unix
Linux Kernel Vulnerability Lurking for ~20 Years - 04 Oct 2025
Bell-LaPadula Model has a covert channel and nobody talks about it! - 11 Sep 2025
Authorization on Linux local IPC using SO_PEERCRED - 21 May 2022
Rethinking SETUID root, Historical Approaches to Least Privilege - 01 Feb 2022
Why setgid to nobody? - 17 Dec 2021
The Confused Deputy and Capability Systems - 22 Nov 2021
What is PR_SET_CHILD_SUBREAPER, How is it related to double-forked daemon? - 17 Nov 2021
caps
Rethinking SETUID root, Historical Approaches to Least Privilege - 01 Feb 2022
The Confused Deputy and Capability Systems - 22 Nov 2021
os
Preemptive scheduling on 16-bit real-mode os? - 27 Sep 2022
sec-process
Bell-LaPadula Model has a covert channel and nobody talks about it! - 11 Sep 2025
A Methodology for Security Requirement Engineering - 04 Apr 2025
tpm
Linux Kernel Vulnerability Lurking for ~20 Years - 04 Oct 2025
dTPM is dead - 10 Sep 2025
TPM Fault Injection - 03 Sep 2025
Point is not on the required curve! - 03 Sep 2025