Skip to main content
Rory McNamara

Rory McNamara

Staff Security Researcher, Snyk

Long-time bug bounty hunter, ex-pentester, and AppSec engineer. Rory is passionate about race conditions and Linux exploitation.

Showing 1 - 9 of 9 records

feature-snyk-platform-learn-getting-snyk-setup
Blog

Abusing Ubuntu 24.04 features for root privilege escalation

September 9, 2024

feature-snyk-platform-learn-getting-snyk-setup
Blog

Agent hijacking: The true impact of prompt injection attacks

August 28, 2024

wordpress-sync/blog-feature-toolkit
Blog

Breaking caches and bypassing Istio RBAC with HTTP response header injection

June 20, 2024

feature-getting-snyk-setup
Blog

Call for action: Exploring vulnerabilities in Github Actions

June 6, 2024

feature-leaky-vessels-deep-dive
Blog

Leaky Vessels deep dive: Escaping from Docker one syscall at a time

February 6, 2024

feature-leaky-vessels-2024-21626
Blog

Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)

January 31, 2024

feature-leaky-vessels-2024-23651
Blog

Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)

January 31, 2024

feature-leaky-vessels-2024-23652
Blog

Buildkit build-time container teardown arbitrary delete (CVE-2024-23652)

January 31, 2024

feature-leaky-vessels-2024-23653
Blog

Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)

January 31, 2024

1