Research
SLYP: Agentic Pipeline Discovers Windows COM Race Condition Vulnerabilities and Generates Verified PoCs
Researchers presented SLYP, an end-to-end agentic vulnerability discovery pipeline targeting Windows COM binaries. It exposes binary exploration, COM inspection, and dynamic debugging as reusable tool interfaces, enabling an LLM agent to discover race condition privilege escalation vulnerabilities and generate debugger-verified proof-of-concept code. COM services run elevated and are widely accessible, making this a critical attack surface.
Source
↳ Follow the thread