A security engineer focusing on fuzzers, exploits, and mitigations for Linux and Android kernels.

  • March 22–28, 2028 — Ringzer0, Online

    🧰 Fuzzing the Linux Kernel [4 days]

    This training guides security researchers and software engineers through the field of Linux kernel fuzzing. In a series of lectures and practical labs, the training explores using fuzzing for finding kernel memory corruption bugs and analyzing their security impact.

    The training starts with an introduction to Linux kernel fuzzing. This part covers making kernel-specific fuzzing harnesses for finding bugs, evaluating the harness effectiveness, and using KASAN to analyze the root cause and security impact of discovered vulnerabilities.

    The second part of the training focuses on syzkaller — the most widely-used Linux kernel fuzzer. This part covers setting up and running syzkaller in its default configuration and also customizing syzkaller for targeted fuzzing of specific kernel subsystems.

  • Jul 28, 2025

    📲 Debugging the Pixel 8 kernel via KGDB

    This article shows how to use GDB over a serial connection for debugging the kernel on a Pixel 8.

    The instructions cover building and flashing a custom Pixel 8 kernel to enable KGDB, breaking into KGDB either via ADB by relying on /proc/sysrq-trigger or purely over a serial connection by sending the SysRq-G sequence, and attaching GDB to the Pixel 8 kernel.

    The instructions should be adaptable to other Pixels as well.

  • Sep 16, 2024 — Linux Security Summit Europe, Vienna

    🧱 SLUB Internals for Exploit Developers

    A talk that covers the SLUB allocator internals and explains how common Slab shaping approaches work for exploiting Slab memory corruption bugs.