Skip to content
View cybrdude's full-sized avatar
💭
Locked In
💭
Locked In

Block or report cybrdude

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
cybrdude/README.md

Typing SVG


RESEARCH FOCUS

Attack Surface Management  ·  Service Mesh Security  ·  ML Runtime Security  ·  Authorization Boundaries  ·  Coordinated Vulnerability Disclosure


OPERATOR PROFILE

Senior cybersecurity practitioner, independent vulnerability researcher, and open-source security tooling contributor.

Founder of NetGuard 24/7 LLC  ·  coordinated disclosure, cybersecurity tooling, threat intelligence.


COORDINATED DISCLOSURES

Selected upstream remediations and coordinated disclosures where I authored or co-authored the patch, the advisory, or both.

Finding Project Status Disposition
Envoy jwt_authn authentication bypass · CWE-287 envoyproxy/envoy ✅ Merged PR #43630 · 6d005fe
CERT/CC VU#692236 · multi-vendor coordination React ecosystem 🟡 Coordinated reactghost.com

Featured: Envoy jwt_authn confused-deputy fix. Authored the fix for an authorization-boundary failure in Envoy's JWT filter where extract_only_without_validation paired with claim_to_headers produced HTTP headers indistinguishable from cryptographically validated ones, letting a forged alg:none token satisfy downstream RBAC. Reported through Envoy's private security advisory process (GHSA-gr4r-79wp-5w3x, reporter credit accepted); the public PR added a verification_status_header field with runtime-guarded staged rollout. Merged into main on May 4, 2026 as commit 6d005fe.


UPSTREAM SECURITY WORK IN REVIEW

Active coordinated-disclosure patches submitted upstream to Google and OSS projects. States current as of July 2026.

Contribution Project State Reference
TFLite uint64 external-offset overflow hardening · CWE-190 tensorflow/tensorflow Approved, ready to pull; imported to LiteRT PR #116631 · LiteRT #8492
PayPal REST API secret detector + OAuth2 validator google/osv-scalibr In review PR #1815
flatbuffer_utils out-of-range Buffer offset/size validation google-ai-edge/LiteRT Open PR #7028
interpreter_builder uint64 overflow (LiteRT-side) google-ai-edge/LiteRT Open PR #8183

Additional memory-safety and path-traversal disclosures in TensorFlow, LiteRT, and MediaPipe are under vendor review.


OPEN-SOURCE TOOLING

Project Description Stack
CitrixScan Citrix NetScaler ADC/Gateway security scanner. 25 CVEs, 10 fingerprint vectors, GZIP timestamp analysis, IoC detection. Python
cve-2026-1731-scanner Passive scanner for CVE-2026-1731 (BeyondTrust Remote Support / PRA pre-auth RCE). Defensive and educational use. Python
Envoy jwt_authn patch Upstream contribution: verification_status_header field, runtime guard, RBAC integration example, security-considerations docs. C++

GITHUB TELEMETRY


CONNECT

Cybersecurity Research · Threat Intelligence · Coordinated Disclosure

Pinned Loading

  1. cve-2026-1731-scanner cve-2026-1731-scanner Public

    Passive vulnerability scanner for CVE-2026-1731 — BeyondTrust RS/PRA pre-auth RCE (CVSS 9.9). Educational & defensive use only.

    Python 4

  2. citrixscan citrixscan Public

    Full-scope external security scanner for Citrix NetScaler ADC/Gateway - 25 CVEs, 10 fingerprint vectors, IoC detection

    Python 6 2