Site Icon

I0

CTF Writeups / Bug Bounties / Cyber Security Research

Introduction to Physical Security: Lock Picking on a budget.

10 February 2026

Exploring lock picking as a hands-on security hobby, without breaking the bank.

19 min read - @osorin  Read More about Introduction to Physical Security: Lock Picking on a budget.

A Deep And Very Technical Analysis of CVE-2025-55182 (React2Shell)

11 December 2025

Explaining the React2Shell vulnerability top to bottom, with no AI slop and proper technical due diligence.

21 min read - @feasto  Read More about A Deep And Very Technical Analysis of CVE-2025-55182 (React2Shell)

Deep Dive into WinRAR License Verification Scheme

15 November 2025

Breaking WinRAR's Pegwit v8 license validation scheme for fun and profit

24 min read - @r4sti  Read More about Deep Dive into WinRAR License Verification Scheme

HTTP3 Request Smuggling With Haproxy

11 August 2025

Using Haproxy's CVE-2024-53008 to showcase practical insights into how HTTP3 opens up a whole new attack surface for request smuggling attacks.

16 min read - @dhmosfunk & @lean  Read More about HTTP3 Request Smuggling With Haproxy

Reverse Engineering APT 36 Android Spyware

30 July 2025

A deep-dive reverse-engineering report on an APT36 Android spyware sample, unpacking a WebSocket C2 channel, hard-coded AES encryption, modular data-theft pipeline, and full set of IoCs for defenders.

16 min read - @frey & @parad0x  Read More about Reverse Engineering APT 36 Android Spyware

Finding 0click RCE on two ZTE routers

12 April 2025

Uncovering some serious vulnerabilities affecting numerous models of ZTE routers.

46 min read - @lean  Read More about Finding 0click RCE on two ZTE routers

Engineering a ROP-chain Against Node.js

12 April 2025

This writeups discusses the implementation of a Proof of Concept exploit for a vulnerability discovered in Node.js by a team in Sonar.

20 min read - @ckrielle  Read More about Engineering a ROP-chain Against Node.js

Computing Inverse Ring Homomorphisms (DIY)

7 March 2025

In this post, a detailed explanation of how to manually define the inverse ring homomorphism in SageMath is explained, mapping a quotient ring over a finite field to a finite extension field of the same characteristic.

17 min read - @r4sti  Read More about Computing Inverse Ring Homomorphisms (DIY)

[Site]  i0.rs

[About]  i0.rs/about

[Contact]  i0.rs/contact