Hey, I’m Thomas 👋

I’ve been working as Vulnerability Researcher for a few years now, first with Synacktiv and then Sonar. It led me to uncover bugs across all kinds of software, and I have a particular affection for some of these recent findings:

I tend to be very open about my work—whenever possible—by publishing articles on my employers’ blogs and giving presentations at DEF CON, Hexacon, TyphoonCon, Insomni’hack, GreHack, etc.

I’m also fond of lower-level security sometimes, with hands-on experience orchestrating fuzzing campaigns and corrupting memory that shouldn’t.

You can find me tootin’ on Mastodon at @swapgs@infosec.exchange, and idling on Libera Chat with ~swapgs.

See you around!