Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...
IEEE

Generalized Algorithm for Website Parsing

Abstract: In this paper, the process of parsing any website is formalized and represented as a generalized algorithm. For this purpose, the notion of target elements containing or leading to ...
IEEE

Log Sequence Anomaly Detection Based on Template and Parameter Parsing via BERT

Abstract: Logs record various operations and events during system running in text format, which is an essential basis for detecting and identifying potential security threats or system failures, and ...
GitHub

Protolens: High-Performance TCP Reassembly And Application-layer Analysis Library

Protolens is a high-performance network protocol analysis and reconstruction library written in Rust. It aims to provide efficient and accurate network traffic parsing capabilities, excelling ...