Aidan Hearth — independent security research studio

A kintsugi bowl, its crack mended in gold, holding a single sheet of parser notes.

We read parsers for a living: the code that loads model files, and the formats they ship in.

When one mishandles a malformed file, we write it up and tell the maintainer. A small studio, recently started, working mostly in the open.

What we do

01

Vulnerability Research

Parser and runtime bugs in open-source projects, found by reading code and building reproducible proofs of concept. Coordinated disclosure, always.

02

Reverse Engineering

Binary, .NET, and Android analysis for systems we own or are explicitly authorized to examine.

03

Malware Triage

Static and dynamic analysis, indicator extraction, and detection rules written to be used, not admired.

04

Threat Intelligence

Open-source collection and investigation support for defenders, with sources you can check.

Recent work

A division-by-zero in llama.cpp's GGUF parser, reported through a GitHub private advisory. In triage, CVE pending.

A heap out-of-bounds read in ExecuTorch's .pte parser, submitted to huntr. Awaiting review.

Acoustic data exfiltration via FSK modulation: public defensive research with detection rules, on GitHub.

More detail and current status: see Reports.