Tencent's Xuanwu Lab

HaS.md — On-Device Text & Image Privacy Protection has.md

Ghost Dependencies: An Emerging Supply Chain Security Threat in the Agentic Coding Paradigm - Tencent Xuanwu Lab xlab.tencent.com/en/2026/02/28/…

AI Web Crawler Security White Paper - Tencent Xuanwu Lab xlab.tencent.com/en/2026/02/02/…

CVE-2025-67303 An issue in ComfyUI-Manager prior to version 3.38 allowed remote attackers to potentially manipulate its configuration and critical data. This was due to the applicat… cve.org/CVERecord?id=C…

BadPower attack corrupts fast chargers to melt or set your device on fire zdnet.com/article/badpow…

Our lab @XuanwuLab made a curated list of infosec resources available at sec.today. It provides global search for past research materials, in a way much like Everything or Spotlight, and also insights about current research focus and trends.

We are proudly to release our slides for NTLM Relay is DEAD, Long Live NTLM Relay in HITB 2018 Dubai conference.hitb.org/files/hitbsecc… And the tools github.com/5alt/ultrarelay We even meet the author of ntlmrelayx! Thank you! @T0m4to_ @darkfloyd1014 @HITBSecConf @XuanwuLab

We are proud to introduce our spectre vulnerability online check tool: xlab.tencent.com/special/spectr… Surface Pro, iPhone X, Chrome, Firefox, almost everything is supported. :-) #Meltdown #Spectre

Congratulation! By the way, we are a department of Tencent, not Tencent itself;) twitter.com/YoStartups/sta…

Microsoft introduced a new exploit mitigation "RFG" in Windows 10 Redstone 2 14942 to protect return address: xlab.tencent.com/en/2016/11/02/…

Our BadBarcode page: xlab.tencent.com/badbarcode/. No new domain name, no logo, just a page:-). #BadBarcode

The detailed technical report of #BadTunnel : "BadTunnel - A New Hope" xlab.tencent.com/en/2016/06/17/…

Abusing Special Cases in System Exception Handling to Achieve Unbelievable Vulnerability Exploitation - xlab.tencent.com/en/2016/04/19/…

Use Chakra engine again to bypass CFG - xlab.tencent.com/en/2016/01/04/…

CanSecWest 2016 (Mar. 16-18) Presentation: Sandbox Escape with Generous Help from Security Software - Chuanda Ding, Tencent Xuanwu Lab

Drag & Drop Security Policy of IE Sandbox - xlab.tencent.com/en/2015/12/28/…

Use Chakra engine again to bypass CFG - xlab.tencent.com/en/2016/01/04/…

Bypass DEP and CFG using JIT compiler in Chakra engine - xlab.tencent.com/en/2015/12/09/…

As the most ancient tech of IoT, barcodes are everywhere, even starship Enterprise. See you #PacSec2015. @PacSecjp

Poking a Hole in the Patch: Escaping from IE Sandbox with a Poorly Patched Vulnerability - xuanwulab.github.io/2015/08/27/Pok…