Zion Boggan
repos/Security Portfolio/commits/7bebb5b
zionboggan.com ↗
Code Commits Tags

Remove CVE references; clean em-dashes from existing copy

7bebb5b   Zion Boggan committed on May 31, 2026 (3 weeks ago)
featured-finding/index.html +5 -5
@@ -10,7 +10,7 @@
<meta property="og:type" content="article">
<meta property="og:site_name" content="Zion Boggan">
<meta property="og:title" content="Featured Finding: Certificate path-length bypass (coordinated disclosure)">
-<meta property="og:description" content="A logic-gating flaw in certificate-chain validation, found via variant analysis of a just-released security patch. Interactive demo of the bug class; full details and CVE after the fix ships.">
+<meta property="og:description" content="A logic-gating flaw in certificate-chain validation, found via variant analysis of a just-released security patch. Interactive demo of the bug class; full details after the fix ships.">
<meta property="og:url" content="https://zionboggan.com/featured-finding/">
<meta property="og:image" content="https://zionboggan.com/assets/og-default.png">
<meta name="twitter:card" content="summary_large_image">
@@ -268,8 +268,8 @@
limit. It's the same <b>"gate a mandatory check on an optional field"</b> anti-pattern that a
recently-published advisory fixed for a sibling check. This is the instance that fix didn't reach.</p>
<div class="embargo">
- <b>Held until the fix ships:</b> the exact library, file/line, the published advisory, the
- assigned CVE, and the real end-to-end proof-of-concept against the live release. Those will
+ <b>Held until the fix ships:</b> the exact library, file/line, the published advisory, and
+ the real end-to-end proof-of-concept against the live release. Those will
appear here once the maintainers release a patched version. Responsible disclosure first,
write-up second. <span class="pending">(Private report submitted to the maintainer.)</span>
</div>
@@ -318,8 +318,8 @@
<li><span class="when">2026-05-31</span><span class="what"><b>Discovered &amp; confirmed.</b> Variant analysis of a just-released security patch; working PoC on the current shipped release.</span></li>
<li><span class="when">2026-05-31</span><span class="what"><b>Reported privately</b> to the maintainer through their security-advisory channel.</span></li>
<li><span class="when">pending</span><span class="what pending">Maintainer triage &amp; fix.</span></li>
- <li><span class="when">pending</span><span class="what pending">CVE assigned · advisory published.</span></li>
- <li><span class="when">pending</span><span class="what pending"><b>This page unlocks:</b> library named, file/line, CVE link, live PoC against the patched-vs-vulnerable release.</span></li>
+ <li><span class="when">pending</span><span class="what pending">Maintainer publishes an advisory.</span></li>
+ <li><span class="when">pending</span><span class="what pending"><b>This page unlocks:</b> library named, file/line, advisory link, live PoC against the patched-vs-vulnerable release.</span></li>
</ul>
</div></div></section>
index.html +9 -9
@@ -4,7 +4,7 @@
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Zion Boggan | Security Engineering, Detection Engineering, and Research</title>
-<meta name="description" content="Zion Boggan - SOC analyst and independent security researcher. Detection engineering, vulnerability research, and applied cryptography, including Oversight Protocol, a post-quantum data-provenance system in Rust.">
+<meta name="description" content="Zion Boggan, SOC analyst and independent security researcher. Detection engineering, vulnerability research, and applied cryptography, including Oversight Protocol, a post-quantum data-provenance system in Rust.">
<meta name="author" content="Zion Boggan">
<meta name="robots" content="index, follow, max-image-preview:large, max-snippet:-1">
<link rel="canonical" href="https://zionboggan.com/">
@@ -15,7 +15,7 @@
<meta property="og:description" content="SOC analyst and independent security researcher. Vulnerability research with full proof-of-concept exploits, detection engineering, and applied cryptography.">
<meta property="og:url" content="https://zionboggan.com/">
<meta property="og:image" content="https://zionboggan.com/assets/og-default.png">
-<meta property="og:image:alt" content="Zion Boggan - Security Engineering & Research">
+<meta property="og:image:alt" content="Zion Boggan: Security Engineering & Research">
<meta property="profile:first_name" content="Zion">
<meta property="profile:last_name" content="Boggan">
<!-- Twitter -->
@@ -291,13 +291,13 @@
<p class="proof-intro">Three recordings, all real output, nothing staged: a web-app data
breach and a full server takeover against targets I host in a lab I control, then a real
cryptographic flaw I found and responsibly disclosed in production software. Offensive
- web, infrastructure, and deep code review - the range I actually work in. Never against
+ web, infrastructure, and deep code review, the range I actually work in. Never against
systems I don't own.</p>
<div class="demo">
<div class="demobar">
<span class="d r"></span><span class="d y"></span><span class="d g"></span>
- <span class="dlabel mono">01 - web-app breach · controlled lab</span>
+ <span class="dlabel mono">01 · web-app breach · controlled lab</span>
<span class="dbadge mono">REAL PoC</span>
</div>
<video class="demovid" autoplay muted loop playsinline preload="auto"
@@ -313,7 +313,7 @@
<div class="demo">
<div class="demobar">
<span class="d r"></span><span class="d y"></span><span class="d g"></span>
- <span class="dlabel mono">02 - server takeover · controlled lab</span>
+ <span class="dlabel mono">02 · server takeover · controlled lab</span>
<span class="dbadge mono">REAL PoC</span>
</div>
<video class="demovid" autoplay muted loop playsinline preload="auto"
@@ -322,14 +322,14 @@
<source src="/assets/hero/rce-demo.mp4" type="video/mp4">
</video>
<p class="democap"><span class="step mono crit">02 · FULL TAKEOVER</span> Command injection in
- an appliance's diagnostics tool: a "ping" box that <b>runs whatever I type - as root</b>.
+ an appliance's diagnostics tool: a "ping" box that <b>runs whatever I type, as root</b>.
One request turns into <b>remote code execution and the server's production secrets</b>.</p>
</div>
<div class="demo">
<div class="demobar">
<span class="d r"></span><span class="d y"></span><span class="d g"></span>
- <span class="dlabel mono">03 - cryptographic research · production code</span>
+ <span class="dlabel mono">03 · cryptographic research · production code</span>
<span class="dbadge alt mono">DISCLOSED</span>
</div>
<video class="demovid" autoplay muted loop playsinline preload="auto"
@@ -337,10 +337,10 @@
onclick="if(this.requestFullscreen)this.requestFullscreen()">
<source src="/assets/hero/crypto-demo.mp4" type="video/mp4">
</video>
- <p class="democap"><span class="step mono">03 · CRYPTO RESEARCH</span> Not a lab - a real flaw I
+ <p class="democap"><span class="step mono">03 · CRYPTO RESEARCH</span> Not a lab, a real flaw I
found and responsibly disclosed in <b>Fireblocks' MPC threshold-signature library</b>. A
one-byte type confusion cut a 40-bit check down to 8 bits, so I <b>forge an invalid proof the
- production verifier accepts</b> - about 1 in 256 tries, with a control run that proves the cause.
+ production verifier accepts</b>, about 1 in 256 tries, with a control run that proves the cause.
The difference between running tools and reading the crypto.</p>
</div>
</div></section>