nrcerne

Welcome to my website! I'm a security researcher focused on web application and embedded device security, and red teaming.

My Work

Findings

4 entries

ID	Severity	Title	Target	Year
CVE-2025-59449	critical	Insufficient Authorization Controls	YoLink Device Hub	2025
CVE-2025-59452	critical	Predictable Device Credentials	YoLink Device Hub	2025
CVE-2025-59448	high	Insecure Network Transmission	YoLink Device Hub	2025
CVE-2025-59451	medium	Improper Session Management	YoLink Device Hub	2025

Projects

3 entries

Name	Summary	Stack
yolink-research	Vulnerability research on the YoLink Device Hub. Four assigned CVEs.	embedded · iot
rusty-malware	A malware development library written in Rust.	rust · offsec
smart-grill-re	Reverse engineering and exploitation of a smart grill controller.	embedded · re

Certifications

Code	Name	Issuer	Year
OSWE	Offensive Security Web Expert	OffSec	2023
OSCP	Offensive Security Certified Professional	OffSec	2022