Security Research Lab

Hive Cell

An independent laboratory dedicated to offensive and defensive cybersecurity research. We focus on vulnerability discovery, reverse engineering, and security tool development—building knowledge and honing our craft within an environment of open collaboration.

SYS: ONLINE
LAB · HIVECELL
RES · ACTIVE
SEC · LAB
DEF · ON ✓
Unit HiveCell SEC-LAB-001
01 — Expertise
Research Areas
01 —
Web Pentesting & Bug Hunting
Security research on Web applications, including business logic flaws, injection vulnerabilities, and authentication bypass.
XSSSQLiSSRFAuth
02 —
Binary Vulnerability Research
Binary security research for Linux/Windows platforms, focusing on memory corruption vulnerabilities like stack/heap overflows, format strings, and UAF.
PWNHeapROP
03 —
Reverse Engineering
Static and dynamic analysis of binaries, firmware, and obfuscated code to reconstruct logic, discover backdoors, and parse proprietary protocols.
IDAGhidraFirmware
04 —
CTF Operations
Participation in major domestic and international CTF events, covering Pwn, Crypto, Reverse, Web, and Misc categories.
CTFAWDJeopardy
05 —
Malware Analysis
Behavioral analysis and code reconstruction of captured malicious programs, tracking C2 communications, analyzing persistence mechanisms.
MalwareC2IoC
06 —
Security Tooling
Development of internal offensive/defensive auxiliary tools, including scanners, automated exploit frameworks, and traffic analysis scripts.
PythonC/C++Rust
02 — Deep Dives
Technical Analysis
Public vulnerability reports, exploit walkthroughs, and open-source tools from our members' daily research.
CVE-2024-38193 NOV 2024 CRITICAL · 9.8
Windows AFD Driver Race Condition Leading to LPE
A Use-After-Free (UAF) vulnerability exists in the Windows Ancillary Function Driver (afd.sys), triggered by a race condition in the IOCTL dispatch path.
by 0xVOID Full Report 

AfdDispatch(PIRP Irp) {
  ctx = AfdGetContext(Irp);
  
  if (ctx->state == AFD_CONNECTED) {
    ctx->callback(ctx); 
  }
}
KPCR spray offset: 0x180
Win11 23H2 · Patched KB5040442
ResearchOCT 2024HIGH
V8 JIT Type Confusion — Chrome Sandbox Escape Analysis
Analysis of a novel exploitation path in the V8 Turbofan compiler, triggering type confusion during speculative optimization.
by n0fadeRead More
ToolSEP 2024UTIL
NULLCHAIN — Multi-Arch Automated ROP Chain Generator
An open-source ROP chain construction tool utilizing the angr symbolic execution engine. Supports x64, ARM64, and RISC-V.
by ropcraftGitHub
AdvisoryAUG 2024HIGH · 8.1
OpenSSL FIPS Module RSA Decryption Timing Side-Channel
The RSA implementation in OpenSSL 3.x FIPS modules contains timing differences during CRT recombination.
by cryptokillAdvisory
CVE-2024-21762JUL 2024CRITICAL · 9.6
Fortinet FortiOS Out-of-Bounds Write leading to Unauth RCE
An out-of-bounds write vulnerability in the SSL-VPN interface. Unauthenticated remote attackers can execute code with root privileges.
by 0xVOIDPoC Analysis
03 — Operators
The Team
Anonymous, identified only by handles. We welcome technical contributions from all.
0x00
Founder · Exploit Dev
KernelWindowsROP
Foxes
Red Team Security Research
Github:https://github.com/wodefox
FuzzingLinuxAFL++
Ming
V8JITSandbox
cryptokill
Cryptography
Applied Cryptography researcher specializing in side-channel attacks and implementation flaws. Focused on lattice-based attacks.
LatticeSide-Ch.Crypto
04 — Contact
Secure Channel
hivecell-secure-channel — bash — 80×24
root@hivecell:~# ./contact.sh --init   [ HIVECELL SECURE CONTACT PROTOCOL v1.0 ] Initializing encrypted channel...   TH9261@outlook.com     [ STATUS: OPEN FOR RESEARCH COLLABORATION ]   root@hivecell:~#