Patrick Ventuzelo

Here are the slides of my talk "Beaconfuzz - A Journey into #Ethereum 2.0 Blockchain Fuzzing and Vulnerability Discovery" at @offensive_con 2022. fuzzinglabs.com/wp-content/upl…

RT @FuzzingLabs: We has been selected to join the Cyber Defense Factory, a program run by the French Ministry of Armed Forces. This is a c…

Last week at @offensive_con 2026, @_Noiche and @Pat_Ventuzelo presented "Navigating the MTE Landscape: iOS Memory Protection Deep Dive" A tour through Apple's MIE: (E)MTE internals, XNU integration, kernel zalloc tagging policy, and the new XZone malloc in userland. Slides 👇 fuzzinglabs.com/wp-content/upl… #OffensiveCon #iOS #MTE

We got the email too. We had a working RCE on Oracle Autonomous AI Database ready to demonstrate live at #Pwn2Own Berlin next week. ZDI confirmed they're at maximum capacity and can't add extra contest days. AI is now generating offensive capability faster than the institutions

New blog post: exploring NVIDIA’s open-source GPU drivers. Kernel modules, IOCTL attack surface, mmap primitives, UVM internals, and CPU↔GPU interactions (pushbuffers → firmware). Not just graphics: a large, exposed kernel surface. fuzzinglabs.com/exploring-nvid…

New training is live: Reversing Modern Binaries - Practical Rust & Go Analysis 4 days, hands-on, built from real malware (Luca Stealer & others). Battle-tested at POC & REcon. 🎟️ Launch -20% with REVERSE20 Prefer in-person? See you at REcon Montreal 🇨🇦 👉

Our team found a Poseidon hash collision in Solana's Agave VM crypto syscall. Two distinct byte inputs → same field element → same Poseidon output. Affects both Agave and Firedancer via implicit padding paths. Full write-up: fuzzinglabs.com/solana-agave-v… Good job by @Ectari0

We reproduced and analyzed CVE-2026-23111, a Linux kernel vulnerability in nftables that led to a use-after-free which we leveraged to achieve local privilege escalation. Full write-up: fuzzinglabs.com/repro-cve-2026…

🏴‍☠️ Proud to sponsor @ph0wn CTF 2026 this weekend including the Skull Island badges! Amazing hardware/IoT CTF as always. Big thanks to @cryptax and the whole team for the incredible challenges. ph0wn.org 🐊 #Ph0wnCTF #CTF #IoTSecurity #HardwareSecurity

🚀 New training live: Masterclass – Scapy for Offensive Security Learn how to: • Craft & manipulate packets • Build & fuzz a DNS server • Do differential fuzzing • Reproduce real CVEs • Analyze parsing & overflow bugs Hands-on. Offensive. Practical. Enroll 👇 academy.fuzzinglabs.com/masterclass-sc…

We just rewrote FuzzForge from scratch and open-sourced it. Old: Temporal + MinIO + workers + backend. Heavy. New: CLI + MCP server + containerized modules. Zero infra. 🖥️ Runs fully local 🧠 Plug your favorite LLM (Copilot, Claude, local models…) 🔗 AI agents orchestrate

🇨🇦 FuzzingLabs at @reconmtl Montréal 2026! This June, we’re delivering 3 advanced, hands-on trainings at REcon: 🦀 Rust Development for Cyber Security 🔍 Reversing Modern Rust & Go Binaries 📡 Attacking Real-World IoT & Embedded Devices 📅 June 15–18, 2026 🔗

@AndrewMohawk @gecko_sec Yes they made an public announcement and modified there blogposts. Tldr: their AI SAST rediscovered public bugs

@gecko_sec I'm on the review board for BH, but I see some alarming posts re x.com/FuzzingLabs/st… -- have y'all responded at all?

The Gecko team is at #BlackHatEurope in London! Excited to continue great conversations from yesterday tackling SAST and AppSec challenges. If you’re in London, stop by booth #722 to see how Gecko finds and fixes business logic vulnerabilities at scale.

We won our entry at #Pwn2Own Automotive 🏆 🎯 Target: Phoenix Contact CHARX SEC-3150 🔓 Auth bypass + priv esc 💰 $20,000 ⭐ 4 Master of Pwn points Congrats to Julien & the team. Thanks to @thezdi #Pwn2Own #Infosec #AutomotiveSecurity

🚀 Open-sourcing MCP Security Hub A growing collection of MCP servers bringing security tools to AI assistants Nmap, Ghidra, Nuclei, SQLMap, Hashcat... and we're just getting started Contribute your favorite tools 🛠️ ⭐ github.com/FuzzingLabs/mc…

I'm very proud to announce that @ethrex_client is now one of the fastest @ethereum clients, right behind @Nethermind, which still leads by a small margin. A little over a year ago, we set out to provide the market with an smaller, simpler and reliable alternative to reth. I

Confirmed! Julien COHEN‑SCALI of @FuzzingLabs targeted the Phoenix Contact CHARX SEC‑3150, chaining two vulnerabilities - an authentication bypass and privilege escalation - to earn $20,000 USD and 4 Master of Pwn points. #Pwn2Own #P2OAuto

🇯🇵 This week, we’re taking part in #Pwn2Own Automotive Japan 2026 organized by @thezdi Our team will be targeting an electric vehicle charger as part of the competition. Best of luck to Julien, representing @FuzzingLabs on site 💪 Hoping for a great week and strong results 🔥

Last week at @BlackHatEvents Europe, @Pat_Ventuzelo presented how we broke real-world AI inference systems, based on hands-on exploit research from #Pwn2Own Berlin. AI security isn’t just about prompts, it’s about runtimes, parsers, and infrastructure. Slides 👇 fuzzinglabs.com/wp-content/upl… #BHEU #AISecurity #Pwn2Own #BlackHat #OffensiveSecurity

Sol-azy: audit-friendly overviews for Solana programs - @Ectari0 @FuzzingLabs fuzzinglabs.com/solana-solazy-…

We just published Part 1 of our deep-dive on how we’re building #FuzzForge. Security tools exist. Orchestration doesn’t. FuzzForge chains SAST + fuzzing + dynamic analysis + AI agents into auditable, adaptive workflows, not black-box “AI hacking.” This is why we’re rethinking security automation 👇 fuzzinglabs.com/build-fuzzforg…