Please, note that Security Explorations' operation has come to an end.

We were a one-man shop security company from Poland that operated from 2008 to 2019
and that provided various services in the area of security and vulnerability research.
Security Explorations came to life as a result of its founder's true passion for breaking
security of things and analyzing software for security loopholes.

Our ambition was to conduct quality, unbiased, vendor-free and independent security and vulnerability
research. We wanted to bring this area to a new level.

{ meet the ceo }

Adam Gowdiak was the company's founder and CEO. He received M.Sc. degree in Computer Science from the Poznan University of Technology. Prior to founding Security Explorations, he worked for the Poznan Supercomputing and Networking Center and Sun Microsystems Laboratories. For over 8 years, he was also an active member of a notable Polish security research group called The Last Stage of Delirium, or LSD.

Adam is an experienced Java Virtual Machine hacker, with over 100 security issues uncovered in the Java technology over the recent years. He is also the Argus Hacking Contest co-winner and the man who has put Microsoft Windows to its knees (the original discoverer of MS03-026 / MS Blaster worm bug). He was also the first expert to present a successful and widespread attack against mobile Java platform in 2004.

After two years spent in California, Adam brought the innovation spirit of Silicon Valley to his company in Poland.

{ summary }

A summary information about Security Explorations can be found in the following documents:

An archive of all public research materials is available for download in a compact form from below:

{ milestones }

Jun 2008

 
Security Explorations comes to life
Breaking security of mobile Java and Nokia S40 devices
 

Aug 2008

Jan 2012

 
Breaking security of a digital satellite TV platform, first successful hack of Conax CAS with chipset pairing
Discovery of 20 security vulnerabilities in Oracle Java
 

Apr 2012

Sep 2012

 
Discovery of Java security vulnerability affecting 1+ billion devices Breaking security of IBM Java
Breaking security of Oracle Java cloud service
 

Jan 2014

Jun 2014

 
Discovery of 20 security issues in Oracle Database Java VM
Discovery of 30 security issues affecting Google App Engine for Java
 

Dec 2014

Jan 2018

 
Security Explorations launches SRP program
Breaking security of Multiroom service of NC+ SAT TV Platform
 

Feb 2018

Sep 2018

 
Security Explorations opens up to GOV / MIL sector
Discovery of ST DVB chipset vulnerability
 

Jan 2019

Mar 2019

 
Discovery of 19 Java Card vulnerabilities
Discovery of a remote Gemalto SIM card vulnerability
 

Apr 2019

May 2019

 
Security Explorations completes operations