Seralys

Our Research

At Seralys, we actively contribute to the security community through original research. Our work focuses on uncovering overlooked risks, often tied to real-world attack paths we encounter during red team and penetration testing engagements. From domain name collisions to cloud misconfigurations and critical 0days, we share findings that help improve awareness, drive remediation, and strengthen defenses across the industry.

Published Security Research Upcoming Contributions

  • Lost in the .cloud: Internal Domain Collisions in SoftLayer/IBM Cloud

    IBM Domain Collision WPAD DNS

    This research highlights internal domain name collisions caused by SoftLayer’s use of unregistered .cloud TLDs, resulting in data leaks and NTLM hash exposures...

    Jun 12, 2025

  • BSides Buffalo 2025

    Cybersecurity Research Conference Domain Collision

    We presented real-world findings from our research on internal domain name collisions, including leaked traffic, and shared the challenges we faced during the disclosure process.

    Jun 7, 2025

  • RVASec 2025

    Vulnerability Disclosure Conference Domain Collision

    This talk covered the technical and operational risks of internal domain name collisions, including several real-world examples uncovered during our year-long research. It also highlighted the challenges encountered while disclosing our findings to affected vendors and organizations.

    Jun 3, 2025

  • xAI Dev Leaks API Key for Private SpaceX, Tesla LLMs

    API Key Leak Secrets Management Cloud Security LLM Security

    Seralys discovered a leaked API key from an xAI developer that granted unauthorized access to xAI, SpaceX, and Tesla internal Large Language Models (LLMs)..

    May 1, 2025

  • Sunshine Cyber Conference 2025

    Conference Pentesting Security Awareness Cybersecurity Misconceptions

    This talk debunked the top 10 cybersecurity misconceptions still commonly encountered across organizations today. Drawing from two decades of penetration testing experience, we offered practical insights to overcome common assumptions that create a false sense of security.

    Feb 2, 2025

  • Hack.lu 2024

    Conference Data Lea Network Security Domain Collision

    This talk presented preliminary findings on internal domain name collisions, demonstrating how unregistered domains under newly delegated TLDs can result in critical data leaks, authentication vulnerabilities, and exposed traffic..

    Oct 25, 2024

  • Mastercard DNS Error Went Unnoticed for Years

    Security Hygiene Vulnerability Disclosure DNS Misconfiguration

    Our research into DNS misconfigurations led to the discovery of a critical vulnerability in Mastercard's infrastructure. This long-undetected misconfigured domain was exploitable for years, highlighting significant systemic DNS hygiene concerns.

    Jan 22, 2025

  • Local Networks Go Global When Domain Names Collide

    Vulnerability Disclosure Data Leak Network Security Domain Collision

    Our research on internal domain name collisions was first featured in this article by Brian Krebs. It details how a misconfigured, unregistered domain under a country code TLD (ccTLD) led to the exposure of internal network traffic from Memphis’s Real-Time Crime Center

    Aug 23, 2024