KOSEC

An independent security research lab focused on reverse engineering, vulnerability research, and offensive tooling.

We publish original research, build experimental frameworks, and occasionally help organizations understand what we break.

Read Research Projects & Tooling

Recent Research

Selected vulnerability research, tooling, and technical write-ups.

2025-11-01

Safetica Kernel Privilege Bypass Vulnerability

Vendor has been notified. Due to no responses, we reported this to CERT and have come forth with our research. Vulnerable drivers and writeups can be found at here.

2025-10-16

Introducing ChainVeil: An On-Chain Dead Drop Resolver

In the evolving intersection of blockchain and security tooling, ChainVeil emerges as a compelling new project. ChainVeil is built in Rust and generates custom JavaScript payloads which interact wi...

View All Research

Selected Projects

Experimental frameworks and tools produced through internal research.

dev-guard

Research-driven auditing tool exploring malicious IDE extension behavior.

Real-time monitoring of VS Code and Cursor extensions at startup and runtime.

AI-assisted threat intelligence identifying novel malicious patterns.

View on GitHub

ChainVeil

Experimental decentralized C2 framework exploring blockchain-based dead drops.

Extensible Rust framework for generating blockchain-aware payloads.

Demonstrates how threat actors abuse decentralized infrastructure for resilience and obfuscation.

View on GitHub

Collaboration & Consulting

We selectively engage in research-driven security work.
For general inquiries, email team@kosec.io