Meet the Author
Jon Williams Senior Security Engineer
As a researcher for the Bishop Fox Capability Development team, Jon spends his time hunting for vulnerabilities and writing exploits for software on our customers' attack surface. Jon has written and presented research on various topics including enterprise wireless network attacks, bypassing network access controls, and reverse-engineering edge security device firmware.
Past Speaking Engagements:
- Tearing Down (Sonic)Walls: Reverse-Engineering SonicOSX Firmware Encryption (DistrictCon 2025)
- Bishop Fox Live at DEF CON 32
- A Firewall Wake Up Call (The CyberWire Podcast)
- What You Can't See CAN Hurt You: SonarQube Privilege Escalation (BSides CT 2020)
- SSH Grabber (BSides CT 2018)
Published Tools:
- Tearing Down (Sonic)Walls: Reverse-Engineering SonicOSX Firmware Encryption (DistrictCon 2025)
- Bishop Fox Live at DEF CON 32
- A Firewall Wake Up Call (The CyberWire Podcast)
- What You Can't See CAN Hurt You: SonarQube Privilege Escalation (BSides CT 2020)
- SSH Grabber (BSides CT 2018)
Posts from Jon Williams
Apr 24, 2025
SonicWall Sonicos Versions 7.1.x and 8.0.x
Mar 21, 2025
SonicWall-CVE-2024-53704: Exploit Details
Mar 18, 2025
Tomcat CVE-2025-24813: What You Need to Know
Feb 24, 2025
Tearing Down (Sonic)Walls: Decrypting SonicOSX Firmware
Feb 10, 2025
SonicWall CVE-2024-53704: SSL VPN Session Hijacking
Jan 15, 2024
It’s 2024 and Over 178,000 SonicWall Firewalls are Publicly Exploitable
Aug 02, 2023
Breaking Fortinet Firmware Encryption
Jul 21, 2023
Citrix ADC Gateway RCE: CVE-2023-3519 is Exploitable, and 53% of Servers Are Unpatched
May 17, 2023
A More Complete Exploit for Fortinet CVE-2022-42475
Sep 12, 2019
Breaching the Trusted Perimeter | Automating Exploitation