khaserdene

Unbounded binary attachments can cause memory exhaustion.

2026 / React Router

CVE-2026-33245

XSS in data routers via open redirects.

Projects

Current work and maintained tools.

project 01

pi-casefile

In progressactive

A casefile app for bug bounty work. It keeps targets, notes, evidence, and runs in one place.

Bug bountyEvidencePi extensionAgents

project 02

ratic cli

In progressactive

A cleaner Claude Code fork for engineering and security work.

CLIArchitectureSecurity

project 03

nyx.ai

Archived

A Go security orchestration experiment with a Next.js operator UI.

GoNext.jsPostgres

project 04

Arch Linux Dotfiles

Maintained

My Arch and Hyprland setup for daily security work.

Arch LinuxHyprlandZsh

project 05

bountykit

Maintained

Playbooks and guardrails for bug bounty work across agent clients.

Bug bountyPlaybooksAgents

HackTheBoxMachinesFortressWriteups

Labs

Practice and small experiments.

lab record

CTF practice

reversing, pwn, forensics, web

lab record

Hack The Box

enumeration, exploitation, privilege escalation

lab record

AI & Security Research

paper notes, small tests, draft ideas

Skills

Main tools and skills.

Security

Binary exploitationReverse engineeringVulnerability researchResponsible disclosureCTF

Programming

PythonCBashJavaScriptGoVibecoding

Tools

pwntoolspwndbgGDBCaidoMCP serversGhidraGit

Platforms

LinuxDockerNetworkingCloud basics

Results

Competition and research results.

SICT Olympiad 2026 — Paper & Research

Persistent SOC Agents

Built the concept and benchmark for SOC agents with memory and telemetry reasoning.

event site paper

2nd Place

AITU CTF 2026

AITU CTF 2026 Final

Reached the final with HACKRATIC and placed seventh.

HACKRATIC team

7th Place

Writeups

Published notes and walkthroughs.

field note

HackTheBox Writeups

Notes from HTB seasons and fortress boxes.

ROPBinary ExploitationWriteups

field note

ROP Emporium Solutions

ROP Emporium solutions with short notes.

field note

CTFMN Solutions

CTFMN notes and walkthroughs.

CTFMNCTFWriteups

Email Facebook Instagram GitHub HACKRATIC

khaserdene.

khaserdene

Cybersecurity student focused on vulnerability research, labs, and security tooling.

projects

2 active now

cves

2 public now

writeups

3 published now

EN and MN below

CV

Links and current focus.

English and Mongolian CVs. View online or download.

availability

Open to internships, junior security roles, and research collaboration.

focus

Vulnerability research, CTF practice, writeups, and tooling.

EN view EN download MN view MN download

CVEs

Public and draft advisories.

2026 / Socket.IO

CVE-2026-33151

Unbounded binary attachments can cause memory exhaustion.

2026 / React Router

CVE-2026-33245

XSS in data routers via open redirects.

Projects

Current work and maintained tools.

project 01

pi-casefile

In progressactive

A casefile app for bug bounty work. It keeps targets, notes, evidence, and runs in one place.

Bug bountyEvidencePi extensionAgents

project 02

ratic cli

In progressactive

A cleaner Claude Code fork for engineering and security work.

CLIArchitectureSecurity

project 03

nyx.ai

Archived

A Go security orchestration experiment with a Next.js operator UI.

GoNext.jsPostgres

project 04

Arch Linux Dotfiles

Maintained

My Arch and Hyprland setup for daily security work.

Arch LinuxHyprlandZsh

project 05

bountykit

Maintained

Playbooks and guardrails for bug bounty work across agent clients.

Bug bountyPlaybooksAgents

HackTheBoxMachinesFortressWriteups

Labs

Practice and small experiments.

lab record

CTF practice

reversing, pwn, forensics, web

lab record

Hack The Box

enumeration, exploitation, privilege escalation

lab record

AI & Security Research

paper notes, small tests, draft ideas

Skills

Main tools and skills.

Security

Binary exploitationReverse engineeringVulnerability researchResponsible disclosureCTF

Programming

PythonCBashJavaScriptGoVibecoding

Tools

pwntoolspwndbgGDBCaidoMCP serversGhidraGit

Platforms

LinuxDockerNetworkingCloud basics

Results

Competition and research results.

SICT Olympiad 2026 — Paper & Research

Persistent SOC Agents

Built the concept and benchmark for SOC agents with memory and telemetry reasoning.

event site paper

2nd Place

AITU CTF 2026

AITU CTF 2026 Final

Reached the final with HACKRATIC and placed seventh.

HACKRATIC team

7th Place

Writeups

Published notes and walkthroughs.

field note

HackTheBox Writeups

Notes from HTB seasons and fortress boxes.

ROPBinary ExploitationWriteups

field note

ROP Emporium Solutions

ROP Emporium solutions with short notes.

field note

CTFMN Solutions

CTFMN notes and walkthroughs.

CTFMNCTFWriteups