Deleting any file on a Coolify managed server with a single `..`I. Introduction Coolify is an open-source, self-hostable PaaS that lets you deploy apps, databases, and pre-baked services on your own servers — the "Vercel/Heroku/Netlify replacement, but you own theJun 16, 2026·10 min read
How I Use Claude Code to Fix Security VulnerabilitiesAbout this article This article documents how I use Claude Code in my CVE research workflow — specifically, how I handle the moment Claude gives me a fix recommendation for a vulnerability I've found May 29, 2026·11 min read
Abusing an Unauthenticated Local Server to Overwrite LLM WikiLocal HTTP servers in desktop apps are easy to overlook during a security review. They don't show up in bug bounty scopes, they're not publicly routable, and developers rarely treat them as a trust boMay 29, 2026·4 min read
AI-Assisted on RASP AnalysisI. Introduction Disclaimer: This blog does not cover bypassing BShield. It is simply a summary of how I used AI as a tool to assist with analysis, debugging, environment setup, and attempting to reverMay 29, 2026·16 min read
Reasoning-First vulnerability research: How I built an AI Agent that found multiples bugs in Open Source project Subtitle: A practical look at building an AI-assisted vulnerability research workflow that reasons through code, traces trust boundaries, and helps discover real security issues responsibly on multiplMay 27, 2026·11 min read
AI-Powered Vulnerability Hunting in WordPress Plugins/Themes<7 days spare time 100 plugins scanned 524 candidate findings 16 confirmed vulns 5 scanner patches This is not a vulnerability disclosure. It's a methodology. I want to share how to build an AI pipMay 26, 2026·17 min read
Firmware Emulation With an Automated Skill SetFirmware Emulation With an Automated Skill Set tags: firmware, emulation, qemu, reverse-engineering, cybersecurity Khoa Hoang Anh, May 25, 2026 Link repo: https://github.com/9wteam/firmware-emulation-May 26, 2026·20 min read
![[CVE-2026-48731] AI-Assisted Discovery of Command Injection in Warp Terminal](/_next/image?url=https%3A%2F%2Fcdn.hashnode.com%2Fuploads%2Fcovers%2F699fec8cc9015c37f6e5364f%2Fe7817cef-a8af-45ec-b931-4e08225edeb6.png&w=3840&q=75)
