*Pawel Wylecial (@h0wlu) - Security researcher / IT security consultant *homepage*

List of security vulnerabilities / Advisories
Google Chrome Use-After-Free in portals (Remote Code Execution + Sandbox Escape)
Google Chrome Use-After-Free in accessibility (Remote Code Execution + Sandbox Escape)
CVE-2020-6463 - Google Chrome Use-After-Free in ANGLE (Remote Code Execution)
CVE-2019-13766 - Google Chrome Use-After-Free in accessibility (Remote Code Execution + Sandbox Escape)
Google Chrome Use-After-Free in portal (Remote Code Execution + Sandbox Escape)
Google Chrome Use-After-Free in display locking (Remote Code Execution)
CVE-2015-2487 / ZDI-15-420 - Microsoft Internet Explorer Embedded Windows Media Player Use-After-Free Remote Code Execution (MS15-094)
CVE-2015-3680 / ZDI-15-284 - Apple OS X DFont FOND Memory Corruption Remote Code Execution
CVE-2015-3679 / ZDI-15-287 - Apple OS X morx nSubtables Memory Corruption Remote Code Execution
mksh-R50e File Descriptor Parsing Integer Overflow
CVE-2015-0036 / ZDI-15-019 - Microsoft Internet Explorer CShadow Direction Integer Overflow Remote Code Execution (MS15-009)
Hopper Disassembler 2.8.7 / 3.6.2 Mach-O Handling Buffer Overflow
CVE-2014-3788 - Cogent DataHub Heap Buffer Overflow Remote Code Execution
CVE-2014-0256 - Microsoft iSCSI Target Remote Denial of Service (MS14-028)
CVE-2014-0255 - Microsoft iSCSI Target Remote Denial of Service (MS14-028)
CVE-2014-1449 - Maxthon Cloud Browser for Android 4.1.4.2000 Address Bar Spoofing
ZDI-13-252 - Cogent DataHub Heap Overflow Remote Code Execution
CVE-2012-4399 - CakePHP 2.x XXE injection

Research / Publications
Google Chrome display locking fuzzing
Google Chrome portal element fuzzing
SyScan360 2014 - Mobile Browsers Security: iOS

I provide IT Security Consulting services - Founder of BlackOwlSec / co-founder of REDTEAM.PL / co-founder of WarCon
Penetration Testing
Vulnerability Research
Browser Security Research / Fuzzing
Exploit Development
please contact me regarding queries and more detailed information

Contact / Links
REDTEAM.PL
BlackOwlSec
@h0wlu
REDTEAM.PL blog
personal blog (no longer maintained)
LinkedIn
keybase
pawel@blackowlsec.com pubkey
pawel.wylecial@redteam.pl pubkey