Skip to main content
Rory McNamara

Rory McNamara

Staff Security Researcher, Snyk

Long-time bug bounty hunter, ex-pentester, and AppSec engineer. Rory is passionate about race conditions and Linux exploitation.

Showing 1 - 12 of 16 records

feature-snyk-platform-learn-getting-snyk-setup
Blog

Abusing Ubuntu 24.04 features for root privilege escalation

September 9, 2024

feature-snyk-platform-learn-getting-snyk-setup
Blog

Agent hijacking: The true impact of prompt injection attacks

August 28, 2024

wordpress-sync/blog-feature-toolkit
Blog

Breaking caches and bypassing Istio RBAC with HTTP response header injection

June 20, 2024

feature-getting-snyk-setup
Blog

Call for action: Exploring vulnerabilities in Github Actions

June 6, 2024

Blog

AppSec Maturity Models

March 8, 2024

feature-leaky-vessels-deep-dive
Blog

Leaky Vessels deep dive: Escaping from Docker one syscall at a time

February 6, 2024

feature-leaky-vessels-2024-21626
Blog

Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)

January 31, 2024

feature-leaky-vessels-2024-23651
Blog

Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)

January 31, 2024

feature-leaky-vessels-2024-23652
Blog

Buildkit build-time container teardown arbitrary delete (CVE-2024-23652)

January 31, 2024

feature-leaky-vessels-2024-23653
Blog

Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)

January 31, 2024

Blog

4 Advantages of using AI code review

November 29, 2023

Blog

Product Security vs. Application Security: What’s the Difference?

July 21, 2023

12