Our Research

At Seralys, we actively contribute to the security community through original research. Our work focuses on uncovering overlooked risks, often tied to real-world attack paths we encounter during red team and penetration testing engagements. From domain name collisions to cloud misconfigurations and critical 0days, we share findings that help improve awareness, drive remediation, and strengthen defenses across the industry.

Published Security Research Upcoming Contributions

Internal domain name collisions in the wild

Domain Collision DNS WPAD CI/CD

This article documents a real-world internal domain collision, from defensive registration and sinkholing to application-layer traffic analysis. It highlights concrete attack primitives involving credentials, CI/CD tooling, and certificate trust and why environment scoping alone is not a mitigation.

Jan, 2026
When vulnerability disclosure meets trademark enforcement

Domain Collision DNS WIPO Trademark

During security research into internal domain name collisions, a leaked internal namespace led to a defensive domain registration, responsible disclosure, and coordination with national CERTs. This article explores how that technical work unexpectedly escalated into a WIPO domain dispute centered on alleged trademark infringement and what it means for security researchers.

Jan, 2026

Internal domain name collisions in the wild

When vulnerability disclosure meets trademark enforcement