Research, Knowledge, and Tools



An Anvil CLI utility that will allow you to trace and replay AWS commands.


Anvil Ventures' Burp extension for signing AWS requests with SigV4.


Dawg the hallway monitor: monitor operating system changes and analyze introduced attack surface when installing software. See the introductory blogpost

White Papers

Finding and Exploiting Bugs in PHP Source Code

A guide that demonstrates how to prepare for a source code review, discover vulnerabilities, and exploit those vulnerabilities, which is part of the OSWE certification.

Defeating Secure Boot Protections With Symlink and Hard Link Attacks

The white paper demonstrates the use of file systems features of a non-verified partition such as symbolic links (symlinks)  to defeat secure boot protection.