London, UK

Sean Heelan

Elite
@SeanHeelan

anamnesis-release. Automatic Exploit Generation with LLMs

624

o3_finds_cve-2025-37899. Artefacts for blog post on finding CVE-2025-37899 with o3

354

HeapLayout. Source code for paper 'Automatic Heap Layout Manipulation for Exploitation'

101

funserialize. Scripts and auxiliary files for fuzzing PHP's unserialize function

45

Malamute. Malamute is a fuzzing toolkit initially developed to aid with regression-test based fuzzing of language interpreters

28

InterParser. A collection of scripts based on libclang for extracting API information from interpreters

24

claude_opus_cve_2023_0266. Demo showing Claude Opus does not find CVE-2023-0266

17

AliasExamples. CodeQL

4

ShapeShifter. An heap allocator that allows a particular layout to be selected

4

Entomology. Bugs! Both security relevant and otherwise.

4

BitVectorDemos. Some small demo scripts for SMTLIB and Z3 basics

4

otel-profiling-agent. The production-scale datacenter profiler

4

DotFiles. Files for initialising my environment on OS X and Linux

3

ksmbd-vuln-research. A report on my ongoing vulnerability research on ksmbd

2

Arjun. HTTP parameter discovery suite.

2

sysgrok. LLM-driven assistant for analyzing, understanding and optimizing systems

2

superopt. A superoptimizing compiler for packet-processing

2

xdev-buildroot. Makefile

2

amass. In-depth attack surface mapping and asset discovery

1

ctf-archives. CTF Archives: Collection of CTF Challenges.

1

puredns. Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

1

fuzztruction-net. Rust

1

google_benchmark_plot. A handy script to visualize google benchmark output

1

PerfBinaryStaticAnalysis. Experimental scripts for detection of potential performance issues in binaries

1

AdventOfCode. https://adventofcode.com/

1

pedantrs. A Rust linter, purely for educational purposes

1

ebpf-blade. Program slicer for eBPF

1

ParaDySE. C

1
28
Apply