Offensive security research · Melbourne, AU

We break complex software.
Then prove the impact.

Vulnerability research and exploit development targeting the software people, businesses, and critical systems depend on.

  • Enterprise
  • ICS / SCADA
  • IoT
  • File formats
341Published advisories
19Public exploits
300+RCE cases reported
18+Years publishing

Research practice

From attack surface
to working exploit.

We combine manual reverse engineering, purpose-built automation, and exploit engineering to turn subtle implementation flaws into clear, reproducible security impact.

01 / MAP

Reverse

Deconstruct proprietary software, protocols, parsers, and trust boundaries.

02 / FIND

Discover

Use targeted tooling and manual review to surface high-impact flaws.

03 / PROVE

Weaponise

Turn primitives into reliable proof-of-concept exploits and full chains.

04 / DELIVER

Deliver

Provide verified capability to trusted clients, or coordinate disclosure and publication when appropriate.

Field notes

Selected research

View all research

Research track record

Most Prolific Researcher.
Built on repeatable results.

Recipient of the 2025 ZDI Vanguard Award, recognising more than 300 remote code execution vulnerabilities reported through the Zero Day Initiative.

Read the story

Research & engagements

Have a difficult target?

For vulnerability research, exploit development, R&D projects, or tailored offensive security requirements.

rocco@tecsecurity.io