River

I’m a university student pursuing a career in cybersecurity. Currently, I’m active in my university’s cybersecurity club, where I contribute to CTF competitions, as well as club infrastructure and operations. On this site, I’ll be sharing my independent research and more.

Find me on and .

Writeups

2026-02-10

HackTheBox: Pterodactyl

exploiting a Pterodactyl game panel via path traversal, PAM environment poisoning, and a udisks2 XFS resize bug to get root
2026-01-28

ROP Emporium: callme

Chaining PLT calls with a multi-argument ROP gadget to invoke three functions in sequence
2025-12-09

wordpress xml-rpc vulnerability on a gov't contractor

wordpress & its subsequent dangers

Competitions & Projects

2025-09-28
Hexo-Password (project)
2025-07-20
Cactus 2.0 Theme (project)
2024-10-08
Horse Plinko Cyber Challenge (2nd) (competition)
2023-10-15
DataDive Orlando (volunteer) (codeathon)