Blog

Andres Roldan

Andres Roldan

VP of Hacking

Andres was a research leader and VP of Hacking at Fluid Attacks from January 2004 to May 2025.

cover-osee-review

Opinions

Andres Roldan

September 1, 2023

8 min

A review of OffSec Exploitation Expert (OSEE): An unexpected journey

In this post, we review the EXP-401 course and OSEE certification offered by OffSec.

Read post

cover-cnas-intel

Opinions

Andres Roldan

May 12, 2023

6 min

CNAs intelligence: A hacker's view of the performance of researcher CNAs

We've been a CNA for a while, and this is an analysis of our performance.

Read post

cover-osep-review

Opinions

Andres Roldan

May 4, 2023

6 min

A review of OffSec Experienced Pentester (OSEP)

In this post, we review the PEN-300 course and OSEP certification offered by OffSec.

Read post

cover-crtl-review

Opinions

Andres Roldan

November 25, 2022

6 min

A review of Certified Red Team Lead (CRTL)

In this post we review the RTO-2 course and CRTL certification offered by Zero-Point Security.

Read post

cover-offensive-hyperv-directx-1

Attacks

Andres Roldan

September 6, 2022

8 min

DirectX/Hyper-V; an offensive view: Follow-up to a Black Hat talk

We will take a brief understanding at DirectX, a new attack surface on Hyper-V.

Read post

cover-amsi-bypass-python

Attacks

Andres Roldan

May 28, 2022

17 min

Bypassing AMSI by using a cross-process memory patching with Python

We will take AMSI bypass to another level by using cross-process memory injection.

Read post

cover-amsi-bypass

Attacks

Andres Roldan

July 9, 2021

3 min

Bypassing AMSI by using memory patching

In this article we will be able to bypass AMSI using memory patching.

Read post

cover-fuzzing-sudo

Attacks

Andres Roldan

February 1, 2021

5 min

Sudo heap overflow: Replicating CVE-2021-3156 with AFL

In this article we will be able to reproduce the bug described on CVE-2021-3156 using fuzzing.

Read post

Load more

Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which organizations of all sizes are already enjoying.

Try for free

Contact sales

Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which organizations of all sizes are already enjoying.

Try for free

Contact sales

Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which organizations of all sizes are already enjoying.

Try for free

Contact sales

Fluid Attacks' solutions enable organizations to identify, prioritize, and remediate vulnerabilities in their software throughout the SDLC. Supported by AI, automated tools, and pentesters, Fluid Attacks accelerates companies' risk exposure mitigation and strengthens their cybersecurity posture.

Get an AI summary of Fluid Attacks

Products

Platform

SAST

SCA

DAST

AI SAST

PTaaS

Secure code review

Reverse engineering

Integrations

Solutions

Continuous Hacking

AppSec

ACSA

ASPM

AI security

RBVM

SSCS

Compliance

DevSecOps

Targets

Web applications

Mobile applications

APIs and microservices

Infrastructure as code

LLM apps and GenAI

Company

About us

Customers

Certifications

Partners

Careers

Trust center

Resources

Advisories

Blog

Success stories

Downloadables

Cybersecurity essentials

Events

Documentation

Courses on our platform

Tool benchmark

Subscribe to our newsletter

Stay updated on our upcoming events and latest blog posts, advisories and other engaging resources.

Subscribe

SOC 2 Type II

SOC 3

© 2026 Fluid Attacks. We hack your software.

Terms of use

Privacy policy

System status

Cookie policy

Fluid Attacks' solutions enable organizations to identify, prioritize, and remediate vulnerabilities in their software throughout the SDLC. Supported by AI, automated tools, and pentesters, Fluid Attacks accelerates companies' risk exposure mitigation and strengthens their cybersecurity posture.

Products

Platform

SAST

SCA

DAST

AI SAST

PTaaS

Secure code review

Reverse engineering

Integrations

Solutions

Continuous Hacking

AppSec

ACSA

ASPM

AI security

RBVM

SSCS

Compliance

DevSecOps

Targets

Web applications

Mobile applications

APIs and microservices

Infrastructure as code

LLM apps and GenAI

Company

About us

Customers

Certifications

Partners

Careers

Trust center

Resources

Advisories

Blog

Success stories

Downloadables

Cybersecurity essentials

Events

Documentation

Courses on our platform

Tool benchmark

Subscribe to our newsletter

Stay updated on our upcoming events and latest blog posts, advisories and other engaging resources.

Subscribe

Get an AI summary of Fluid Attacks

SOC 2 Type II

SOC 3

© 2026 Fluid Attacks. We hack your software.

Terms of use

Privacy policy

System status

Cookie policy

Fluid Attacks' solutions enable organizations to identify, prioritize, and remediate vulnerabilities in their software throughout the SDLC. Supported by AI, automated tools, and pentesters, Fluid Attacks accelerates companies' risk exposure mitigation and strengthens their cybersecurity posture.

Products

Platform

SAST

SCA

DAST

AI SAST

PTaaS

Secure code review

Reverse engineering

Integrations

Solutions

Continuous Hacking

AppSec

ACSA

ASPM

AI security

RBVM

SSCS

Compliance

DevSecOps

Targets

Web applications

Mobile applications

APIs and microservices

Infrastructure as code

LLM apps and GenAI

Company

About us

Customers

Certifications

Partners

Careers

Trust center

Resources

Advisories

Blog

Success stories

Downloadables

Cybersecurity essentials

Events

Documentation

Courses on our platform

Tool benchmark

Subscribe to our newsletter

Stay updated on our upcoming events and latest blog posts, advisories and other engaging resources.

Subscribe

Get an AI summary of Fluid Attacks

SOC 2 Type II

SOC 3

© 2026 Fluid Attacks. We hack your software.

Terms of use

Privacy policy

System status

Cookie policy

Meet us at RSA Conference™ 2026 at booth N-4614! Book a demo on-site.

Plans

Advisories

EN

Contact sales

Log in

Try for free

Meet us at RSA Conference™ 2026 at booth N-4614! Book a demo on-site.

EN

Meet us at RSA Conference™ 2026 at booth N-4614! Book a demo on-site.

EN

Contact sales

Try for free