moscovium-mc's security blog

I’m a Full Stack Developer and Security Researcher with over 10 years of hands-on experience spanning modern web development, offensive security, and independent security research. My work sits at the intersection of building scalable, production-ready applications and developing practical tools for penetration testing, OSINT, and security automation.

On the web development side, I specialize in designing and implementing end-to-end applications, from responsive front-end interfaces to robust back-end services. I’m proficient in React, Next.js, Node.js, JavaScript, TypeScript, HTML5, CSS, and Tailwind CSS, with experience deploying and maintaining applications on platforms such as Netlify and Vercel. I prioritize clean architecture, maintainable codebases, and developer-friendly workflows.

In security research, my focus is on offensive security and tool development. I primarily work with Python and Bash to create penetration testing utilities, OSINT reconnaissance tools, and automated security assessment frameworks. My work includes credential exposure analysis, Cloudflare and WAF reconnaissance, vulnerability research, and building scalable tooling for real-world security assessments. I maintain and contribute to multiple open-source security tools and actively engage with the infosec community.

news

Jan 10, 2026	MSR206 Software Interface Development
Dec 15, 2025	Proud to announce the beginning of arachNIDS-NG development, continuing the legacy of the original arachnids project started in the early 2000s. With over 20 years of cybersecurity and evolution in network intrusion detection, arachNIDS-NG represents the next generation of intelligent threat detection systems designed for modern security operations.
Jan 01, 2024	Excited to announce the launch of my new security-focused GitHub Pages site! After years of cybersecurity work and development, I’m bringing all my projects, research, and tools together in one centralized location. This platform will serve as a hub for sharing security insights, open-source tools, and technical documentation.

latest posts

Feb 05, 2026	Understanding Zero-Day Vulnerabilities and Their Security Impact
Dec 27, 2025	The Evolution of Cybercrime and Underground Markets
Dec 27, 2025	The Future of Cybersecurity

selected publications

CVE-2024-9680: Use-After-Free in Firefox Animation Timelines Leading to Remote Code Execution

MC Moscovium

. Analysis and exploit code available here , Nov 2024

Patched in Firefox 131.0.2, ESR 128.3.1, and 115.16.1. Actively exploited in the wild targeting Tor Browser users.

Abs Bib HTML Code

Comprehensive analysis of CVE-2024-9680, a critical use-after-free vulnerability in Firefox’s animation timeline management allowing remote code execution. Repository includes original exploit code from wild attacks, safety-hardened educational demonstration, and stage-by-stage exploitation breakdown covering initialization (Web Workers shellcode delivery), DOM crafting (SVG animation structures), heap spraying, and UAF trigger through animation attribute manipulation.
@misc{cve20249680, title = {{CVE}-2024-9680: {U}se-{A}fter-{F}ree in {F}irefox {A}nimation {T}imelines {L}eading to {R}emote {C}ode {E}xecution}, author = {Moscovium, MC}, year = {2024}, month = nov, howpublished = {GitHub Repository}, note = {Patched in Firefox 131.0.2, ESR 128.3.1, and 115.16.1. Actively exploited in the wild targeting Tor Browser users.}, tags = {exploit, vulnerability, tor, firefox, uaf, rce, 0day, javascript} }