Kernel Engineering
Windows internals, driver behavior, and security boundary analysis in modern hardened systems.
Marek Wesołowski (WESMAR)
Low-level Software Engineer — Windows Internals · Kernel-Mode · Security Research
Core Capabilities
Research Tooling
Custom low-level frameworks built for reproducible tests, structured validation, and operational clarity.
System Security
Mitigation assessment across boot flow, trust chain transitions, and protected process mechanics.
Low-level software engineer with strong expertise in Assembly, C, and C++, specializing in kernel-mode development, and system-level programming. Experienced in creating advanced tools, kernel drivers, and EFI applications.
Proficient in classical and modern Assembly (x86/x64), C, and C++, I specialize in low-level engineering, Windows internals, and kernel-mode development. My work focuses on operating system architecture, firmware environments (EFI/UEFI), and security boundary analysis in hardened systems.
I am the author of advanced system-level research tools, including CmdT, KVC (Kernel Vulnerability Capabilities), and KernelResearchTool frameworks demonstrating deep understanding of NT internals, process protection models (including PPL), driver loading mechanics, DSE behavior, token manipulation, and boot-time security context transitions.
My research involves mitigation assessment and controlled proof-of-concept development to evaluate the effectiveness of modern protections in Windows and UEFI environments. This includes analysis of driver signature enforcement logic, protected process semantics, and early-boot trust chain behavior.
Across platforms (Windows, Linux/Unix, macOS, Android), I maintain a strong focus on architectural clarity, performance engineering, and system integrity.
I am able to transition from vulnerability discovery to functional proof-of-concept validation within tightly constrained timelines when operating under formally authorized research mandates.