2019

• Hacking Jenkins Part 2 - Abusing Meta Programming for Unauthenticated RCE!
• Hacking Jenkins Part 1 - Play with Dynamic Routing

2018

• Exim 任意代碼執行漏洞 (CVE-2018-6789)
• 一次在 Sandstorm 跳脫沙箱的滲透經驗

2017

• Exim RCE 資安通報 (CVE-2017-16943)
• WEB2PY 反序列化的安全問題－CVE-2016-3957

2016

• Accellion File Transfer Appliance 弱點報告