Vulnarium comes from a desire to provide security teams with in-depth information, helping them make better-informed decisions about software vulnerabilities. In today’s complex threat landscape, organizations often struggle to understand the nuances behind each vulnerability. By focusing on clear, actionable insights, Vulnarium aims to bridge the gap between raw data and practical application—ultimately empowering security professionals to proactively address threats and protect their systems more effectively. 

More specifically, Vulnarium aims at helping security teams answer the dreaded question: 

"Should we, yes or no, fix this security vulnerability?"

We hope our efforts will help make cyberspace a little safer.

Who is "we"? 

Hello! My name is Philippe (please call me Phil), and I’m currently the sole individual behind “we.” I live in Canada and have extensive experience in cybersecurity—13 years focused mainly on software security, and 17 years in tech overall.

I began my cybersecurity journey in 2012 as a Security Analyst at CGI, where I was fortunate to explore software security assessments. After three years there, I had the privilege of serving my country for eight years at the Communications Security Establishment Canada. Although that role kept me in Ottawa, I eventually returned to the private sector in Quebec City—closer to my family—where I now work for a large company.

Over the last 13 years, I’ve tackled a wide range of tasks, including:

• Software security auditing

• Software and hardware reverse engineering

• Vulnerability management

• Intrusion detection and prevention

During this time, I was also honored to speak at events such as PyCon Canada, CUSEC, ShawiSec, and various colleges and universities across Canada. 

Today, I’m launching a side project aimed at documenting different vulnerabilities to help vulnerability management teams worldwide. I believe my background uniquely positions me to share insights that might otherwise remain hard to find—ultimately helping security professionals make more informed decisions.

Our contributions to the cybersecurity community will expand and adapt over time. Initially, our main focus is on providing detailed, actionable information about software vulnerabilities to help security professionals make informed decisions. As Vulnarium grows, we’ll also develop specialized tools and create educational resources—empowering teams worldwide to strengthen their security posture.