Hello, I'm Zayne.

Software engineer, wannabe hacker, not an AI shill.

I'm Zayne (or Zeyu, if you prefer mandarin), a software engineer with a background in computer security. I'm a Computer Science student at Cambridge, and I love to build things that make a difference.

The economic failures of penetration testing

January 9, 2026

Information asymmetry, moral hazards, and perverse feedback loops in the penetration testing market.

Making sense of React4Shell / React2Shell (CVE-2025-55182)

December 6, 2025

A deep dive into the React4Shell / React2Shell vulnerability (CVE-2025-55182), a critical remote code execution vulnerability in the React Server Components Flight Protocol.

Chasing ambition and losing people

September 4, 2025

Good people are hard to come by. Keep them close by taking care of yourself first.

Executing arbitrary Python code from a comment

July 28, 2025

Can you execute arbitrary Python code from only a comment? We explore how Python's overzealous ZIP file detection can lead to unexpected code execution vulnerabilities when well-escaped user input is injected into comments or string literals in Python source files.

Work

Company
Hacktron AI
Role
Co-Founder & CEO
Date
Apr. 2025 Present
Company
Optiver
Role
In another life...
Date
Jul. 2025 Sep. 2025
Company
Allthenticate
Role
Software Engineer Intern
Date
Dec. 2024 Jan. 2025
Company
Cure53
Role
Freelance Security Consultant
Date
May 2023 Present
Company
Open Government Products
Role
Software Engineer Intern
Date
Jun. 2024 Sep. 2024
Company
TikTok
Role
Security Engineer Intern
Date
Apr. 2023 Sep. 2023

View CV