Our research

At Seralys, we investigate emerging threats, uncover overlooked vulnerabilities, and contribute practical knowledge to the security community. Our team actively engages in original security research—from DNS misconfigurations to cloud and web vulnerabilities—with the goal of sharing actionable insights and improving digital defenses.

Published Upcoming

0 day on xxxx xxx leading to full authentication bypass

0 day Red Teaming Code Review

What started as a red teaming engagement ended in full Authentication bypass leading to Remote Code Execution on an enterprise software used to manage thousands of machines across the globe.
How a small DNS typo became a global traffic sinkhole after someone forgot the 't' in net

DNS Domain Misconfiguration Cache Poisoning Critical

A small typo (.akam.ne instead of .akam.net) resulted in significant DNS misconfiguration, causing global traffic to be directed to our controlled domain. This exposed potential for widespread cache poisoning, traffic interception, and sensitive information exposure. Multiple large enterprises were affected, emphasizing the importance of meticulous DNS management.

0 day on xxxx xxx leading to full authentication bypass

How a small DNS typo became a global traffic sinkhole after someone forgot the 't' in net