River

I’m a university student pursuing a career in cybersecurity. Currently, I’m active in my university’s cybersecurity club, where I contribute to CTF competitions, as well as club infrastructure and operations. On this site, I’ll be sharing my independent research and more.

Find me on and .

Writeups

2025-12-09

WordPress XML-RPC Vulnerability Disclosure: Exposed Staging Environment

Security analysis of XML-RPC misconfiguration and publicly accessible staging environment in WordPress deployment
2025-04-22

HackTheBox: Imagery

Abusing XSS, LFI, and misconfigured Linux permissions
2025-04-22

PicoCTF: WinAntiDbg0x300

Bypassing an infinite debugger-killing loop by NOP'ing an unconditional jump

Competitions & Projects

2025-09-28
Hexo-Password (project)
2025-07-20
Cactus 2.0 Theme (project)
2024-10-08
Horse Plinko Cyber Challenge (2nd) (competition)
2023-10-15
DataDive Orlando (volunteer) (codeathon)