Amy Burnett

TyphoonCon 2020 Speaker

Amy Burnett is a senior security researcher and co-founder of RET2 Systems, where she specializes in browser security and mitigation bypass. Amy has spoken about and had lead training on advanced browser exploitation at multiple private events and conferences worldwide. She and her team developed and publicly demonstrated a remote code exploit against Safari for Pwn2Own 2018, which also leveraged a macOS bug to gain root level code execution.


Amy’s research usually consists of looking for bugs in the JavaScript engines of Chrome and Safari with a focus on analyzing their JIT compilers. Beyond finding bugs Amy likes to write exploits for disclosed bugs, with a focus of coming up with mitigation/hardening bypass techniques and designing stage two payloads.

TyphoonCon 2020 talk