Mohammed Idrees Banyamer
Security Researcher & Exploit Developer
๐ Jordan ยท Information Security Consultant @ JODDB
Who am I?
I'm Mohammed Idrees Banyamer, an independent security researcher and exploit developer based in Jordan. I specialize in offensive security โ finding and weaponizing vulnerabilities across Windows internals, web applications, mobile platforms, and embedded systems. My work focuses on original CVE discovery, proof-of-concept development, and responsible disclosure.
I currently work as an Information Security Consultant at JODDB while running this blog to document my research, share exploit writeups, and contribute back to the security community.
Published CVEs & Exploits
CVE-2025-24071
High
PoC โ
Windows File Explorer NTLM Hash Disclosure
Windows 11 File Explorer (.library-ms)
CVE-2025-24076
High
PoC โ
Windows 11 Elevation of Privilege
Windows 11 22H2/23H2/24H2 + Server 2025
CVE-2025-30397
Critical
PoC โ
Windows Server 2025 JScript.dll Use-After-Free RCE
Windows Server 2025 JScript.dll
CVE-2025-68613
Critical
PoC โ
n8n Authenticated Expression Injection RCE (CVSS 9.9)
n8n Workflow Automation Platform
CVE-2025-2594
High
PoC โ
WordPress User Registration Plugin Auth Bypass
WordPress User Registration Plugin โค4.1.2
Skills & Focus Areas
Exploit Development
CVE Research
Windows Internals
Privilege Escalation
Remote Code Execution
Use-After-Free
NTLM / SMB Attacks
Web Application Security
WordPress Security
Kernel Exploitation
Reverse Engineering
PoC Development
Responsible Disclosure
Risk Management
Penetration Testing
HackTheBox
CTF Challenges
Active On
โ ๏ธ All research published on this blog is conducted for educational purposes and responsible disclosure only.
PoC code is shared after vendor patches are available. Do not use any of this for unauthorized access.