Offensive Security Engineer // Penetration Testing, Red Teaming, Research
You can find me on Twitter, GitHub, Intigriti, YesWeHack, and via email at vict0ni at protonmail dot com.
Realme’s Customer Support Platform Data Leak and Unauthorized Access
Roundcube CVE-2024-42008 and CVE-2024-42010 PoC
Chaining XSS and IDOR for Complete Account Compromise
Brocade Fabric OS < 9.1.1 rbash Escape to read System Files
ASCII Smuggling in Google Gemini
On the Hunt for Data Leaks: Elastic(search²)
Oracle Database remote “stealth password brute-force”