Benjamin Ali glitchfox
Vulnerability research & reverse engineering.
I break parsers of untrusted input — C/C++ memory safety, fuzzing, and binary analysis — and root-cause each crash to the underlying defect and a verified fix. Based in Banbury, UK; I also build and run my own infrastructure stack.
1 Advisories
0 CVEs
1 Products
1 Fixed
Recent advisories
- dr_libs (dr_flac) fixed
Heap out-of-bounds read in dr_flac SEEKTABLE metadata parsing
Recent writeups
-
A short, targeted fuzzing session against dr_libs turned up a heap out-of-bounds read in dr_flac's SEEKTABLE metadata handling — and the interesting part was the discipline around the bug, not the bug.
Focus
- Parsers & decoders of untrusted input — audio, media, file formats
- Reverse engineering & binary analysis
- Root-causing crashes to the defect, then a verified fix