🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

"Running #Ghidra on the same platform as the binaries you’re analyzing isn’t just convenient — it’s strategic." medium.com/@clearbluejar/…

131 bugs fixed un Sequioa oh wow

Two new CVEs for me this time around: CVE-2025-30456 and CVE-2025-24277 with the one and only Csaba Fitzl :) Time to look for some bypasses eh?

Bush hid the facts…about UTF-16 Encoding. It’s 2004, you fire up your Zune-themed WinXP rig. A friend tells you to type a string into notepad.exe. Save. Close. Reopen. Now it's nonsensical Chinese. This wasn't some NSA conspiracy; it's a horrible Unicode bug.

Amid all the hype I despise, let’s not forget: Chaos Theory (2006) by Hungarian team Conspiracy—a mind-blowing 64k (!!) demoscene prod—remains the greatest feat ever with GPUs. LLMs might contend, but this just wins. bit.ly/4jf8LlQ

This is glorious: testing for file existence using wait3() on a setuid process seclists.org/oss-sec/2025/q…

I wrote a post on #macOS internals for detection engineers! 🔎 In this post, I focus on versioning quirks, system logging, and the historical context of macOS security features. I'd love to do a series on this soon—focusing on how I learned ARM basics, and how folks from

Training submitted for OBTSv8, wish me luck. It's called "File-oriented vulnerability discovery and exploitation on iOS/macOS", which pretty much sums it up.

Beej's guides got me started all these years ago and they are a highly recommended read. The man is a legend

Great writeup about an archive utility file write vuln

I'm sad to say, #OBTS rejected my filesystem training, which is pretty discouraging. Considering how many of you reached out to me and found bugs because of my blogposts I will still do it, but I'm not sure where. Do you guys have conferences that you recommend?

Major new QEMU update released. The coolest part? Paravirutalized Apple GPUs. You can now spin up disposable macOS VMs *with* hardware acceleration. macOS guests now expose a thin vGPU (apple-gfx-mmio). very useful for CI, reverse engineering, gfx research, etc

Is it just me or J's entitlement DB is really down?

Monday dopamine detox over courtesy of the Spanish electric grid. Need to upgrade my ups setup as 8 hours without power and thus no comms is a little unnerving

Wow if this was the cause, I wouldn't want to be the one who did it

I didn't have enough time to weaponise this beyond a simple dos but a neat example of bypassing TCC and SIP to nuke a user's files and brick a macOS device. Only managed unlink() unfortunately, and not full rootless ent's. Requires priv'd user to succeed.

Oligo Security researchers uncovered critical vulnerabilities in Apple's AirPlay protocol, affecting billions of devices—allowing zero-click remote attacks, privilege escalation, MITM, and more. Update immediately to iOS 18.4 & MacOS 15.4. oligo.security/blog/airborne #CyberSecurity

I have attended Jonathan's training last year and it was really good. Highly recommended, although it is pretty advanced