Log inOpen app
Vitaly Nikolenko
926 posts
user avatar
Vitaly Nikolenko
@vnik5287
Security researcher @ DUASYNT. Kernels, browsers. PGP: 77B1 FBAC E0FD 2E94 F8AC 2D91 9566 2314 344F 85E8
Sydney, Australia
duasynt.com
Joined May 2014
94
Following
5,635
Followers
RepliesRepliesMediaMedia
user avatar
@vnik5287

See Vitaly Nikolenko’s full profile

Open X

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Sep 29, 2024
    wtf just had 2x laptops, 4x pixel 7 test devices, 25x kernel debug adapters, uart cables, pcb boards and usb drives seized in Abu Dhabi on my way to Hexacon. the only explanation they gave me is “you have too many cables”!
    47
    53
    1.8K
    133K
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Apr 12, 2020
    Oracle Unbreakable Enterprise Kernel (UEK) is not that "unbreakable"
    10
    179
    579
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Sep 29, 2024
    Replying to @vnik5287
    I had my laptops, phones inspected before many times but never had my stuff actually taken away from me
    1
    1
    386
    15K
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Jun 24, 2016
    VMware told me this bug wasn't exploitable and now they're "requesting" me not to release the exploit!
    7
    212
    191
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Sep 26, 2018
    Linux kernel userfaultfd+setxattr heap spray writeup @bevxcon cyseclabs.com/blog/linux-ker…
    1
    115
    205
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Feb 28, 2020
    centos 8 / rhel 8 / ubuntu 14.04, 16.04, 18.04 poc is uploaded github.com/duasynt/xfrm_p…. The tech report is public too duasynt.com/pub/vnik/01-03…
    5
    102
    202
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Jun 15, 2020
    if you're not familiar with the term "defensive programming" here's an example
    8
    32
    182
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Jul 5, 2017
    uploaded my last workshop Linux kernel bug (addr_limit/set_fs bug + stack info leak) walkthrough
    1
    85
    141
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Aug 11, 2019
    5
    22
    129
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Jan 7, 2020
    ROP/JOP pivoting to user space is now back in style git.kernel.org/pub/scm/linux/…
    1
    42
    127
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Jul 1, 2016
    Since this is public now, here's the netfilter target_offset Ubuntu 16.04 local root exploit cyseclabs.com/exploits/targe…
    1
    110
    116
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Oct 15, 2017
    Linux kASLR TSX/RTM bypass library from the last training session
    github.com
    GitHub - vnik5287/kaslr_tsx_bypass: Linux kASLR (Intel TSX/RTM) bypass static library
    Linux kASLR (Intel TSX/RTM) bypass static library. Contribute to vnik5287/kaslr_tsx_bypass development by creating an account on GitHub.
    59
    114
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Aug 24, 2020
    I'll be running my Linux kernel exploitation course (x86_64) in November - public registrations / online delivery. duasynt.com/training_regis…
    2
    18
    103
  • user avatar
    Vitaly Nikolenko
    @vnik5287
    Sep 8, 2022
    apparently what I did back then github.com/snorez/exploit… is now called DirtyCred
    27
    107