Piotr Bazydło
@chudyPB
Followers
4K
Following
3K
Media
43
Statuses
922
Principal Vulnerability Researcher at watchTowr | Previously: Zero Day Initiative | @[email protected]
Joined October 2017
My OffensiveCon 2024 talk about Exchange PowerShell Remoting is available. Includes a chain of 3 vulns to RCE (file write + file read + DLL load).
3
103
295
My 2nd Sitecore blog is live. This time, it's a Pre-Auth HTML Cache Poisoning (fun reflection) + Post-Auth RCE 🫡.
It’s Friday, and we’re back - completing our 2 part series detailing the vulnerabilities we discovered in the Sitecore Experience Platform CMS 🫡.
1
10
72
Blazing-fast image creation – using just your voice. Try Grok Imagine.
278
547
3K
RT @watchtowrcyber: "Teach a hacker to find vulnerabilities, and they might find a couple. Teach a hacker to steal warez from another idiot….
labs.watchtowr.com
On July 18, 2025, users of CrushFTP woke up to an announcement: As we’ve all experienced in 2025, 2025 has been the year of vendors burying their heads in the sand with regards to in-the-wild...
0
44
0
RT @lastweekinfosec: WebClient deep dive (@0xthirteen), 2x RCE chains in Commvault (@chudyPB), how to rob a hotel (@dmcxblue), MSI patch/pr….
blog.badsectorlabs.com
WebClient deep dive (@0xthirteen), 2x RCE chains in Commvault (@chudyPB), how to rob a hotel (@dmcxblue), MSI patch/protocol handler RCE (@johnnyspandex), self-relaying (@_logangoins), and more!
0
1
0
RT @stephenfewer: Come join @rapid7! I’m hiring for a Senior Security Researcher to join our team. You'll get to work on n-day analysis, ze….
careers.rapid7.com
The Senior Security Researcher will drive vulnerability discovery and analysis within Rapid7’s Vulnerability Intelligence team. You’ll research zero-day and n-day threats, develop exploits, publish...
0
16
0
RT @chompie1337: I've been asked countless times how to learn VR & xdev. The answer is always: "do something you think is cool". It's hard….
github.com
Binary Exploitation Phrack CTF Challenge. Contribute to xforcered/PhrackCTF development by creating an account on GitHub.
0
143
0
I joined Sonny and added quite nice pre-auth RCE chain, which contains argument injection -> auth bypass vuln 🫡.
We're back - returning to the scene of the "crime" - to demonstrate 2 pre-auth RCE chains against Commvault (CVE-2025-57788, CVE-2025-57789, CVE-2025-57790, CVE-2025-57791) . Enjoy, and speak soon 😉.
1
9
51
RT @steventseeley: As it turns out, @orange_8361 and I have more in common than I had thought! If you love old school PHP quirks and CTF tr….
0
61
0
RT @watchtowrcyber: We’re expanding the phorce globally - and within watchTowr Labs, we’re always hiring. We’re looking for hands on skills….
0
18
0
Small survey. Should my blogs be:.a) Long as usual, with a deep dive and the code flow analysis. b) Shorter, straight to the root-cause analysis. Any feedback appreciated :).
0
0
2
RT @watchtowrcyber: Should security solutions be secure? We're beginning to feel wrong. Enjoy some unscheduled programming - our analysis….
labs.watchtowr.com
It’s Friday, but we’re here today with unscheduled content - pushing our previously scheduled shenanigans to next week. Fortinet is no stranger to the watchTowr Labs research team. Today we’re...
0
34
0
RT @thezdi: We've managed to make it through hacker summer camp, and #Microsoft and #Adobe survived enough to deliver their latest security….
zerodayinitiative.com
We’ve made it through hacker summer camp and made our way to the second Tuesday of the month. Adobe and Microsoft seemed to have survived as well, as they released their latest security patches. Take...
0
6
0
RT @albinowax: The whitepaper is live! Learn how to win the HTTP desync endgame. and why HTTP/1.1 needs to die:
http1mustdie.com
Upstream HTTP/1.1 is inherently insecure, and routinely exposes millions of websites to hostile takeover. Join the mission to kill HTTP/1.1 now
0
250
0
RT @TheZDIBugs: [ZDI-25-809] (0Day) Microsoft Exchange PowerShell Exposed Dangerous Method NTLM Relay Vulnerability (CVSS 8.8; Credit: Piot….
zerodayinitiative.com
(0Day) Microsoft Exchange PowerShell Exposed Dangerous Method NTLM Relay Vulnerability
0
3
0
RT @TheZDIBugs: [ZDI-25-820] (0Day) Microsoft SharePoint IsAuthorizedType Deserialization of Untrusted Data Information Disclosure and Deni….
zerodayinitiative.com
(0Day) Microsoft SharePoint IsAuthorizedType Deserialization of Untrusted Data Information Disclosure and Denial-of-Service Vulnerability
0
3
0
RT @TheZDIBugs: [ZDI-25-822] (0Day) Microsoft SharePoint GetTransformer Unsafe Reflection Denial-of-Service Vulnerability (CVSS 6.5; Credit….
zerodayinitiative.com
(0Day) Microsoft SharePoint GetTransformer Unsafe Reflection Denial-of-Service Vulnerability
0
1
0
RT @TheZDIBugs: [ZDI-25-813] (0Day) Microsoft PowerShell TryModuleAutoLoading Directory Traversal Remote Code Execution Vulnerability (CVSS….
zerodayinitiative.com
(0Day) Microsoft PowerShell TryModuleAutoLoading Directory Traversal Remote Code Execution Vulnerability
0
1
0
Research is fun. One month ago, I thought that I'll never again make a research as good as my .NET deserialization one. Here I am today, writing a new whitepaper. You never know the day 😅.
4
2
117
Btw, I described my SharePoint CVE-2024-38018 at a PL conference last year, and they've recently uploaded it. I guess you don't know Polish, but slides are in English 😅 RCE part starts at 30:30 .
3
24
119