🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Slides for the presentation “Tales from the iOS/macOS Kernel Trenches” that I recently held at Zer0Con 2022 are now publicly available here: github.com/potmdehex/slid…

Apple is choosing not to pay bounties for kernel infoleaks. Being in more demand than ever after new mitigations, I expect Apple to change their stance for such bugs reported by A. Z., myself and others. Until then I recommend researchers present such bugs at 0x41con

My #POC2022 slides + the iOS kernel r/w exploit can be found here :) github.com/0x36/weightBuf… Thanks POC_Crew 👨‍👩‍👦‍👦 for a fantastic conference and truly honored to have been part of it.

Slides for the presentation “More Tales from the iOS/macOS Kernel Trenches” held at Hexacon 2022 are now publicly available here: github.com/potmdehex/slid…

I would love to share with you all my write-up and PoC on CVE-2022-42864, a TOCTOU in IOHIDFamily: muirey03.blogspot.com/2023/01/cve-20… I hope you enjoy!

Proof of concept for CVE-2022-46697, an out-of-bounds access in IOMobileFrameBuffer. Fixed in macOS Ventura 13.1. github.com/antoniozekic/P…

CVE-2023-28206 PoC: gist.github.com/LinusHenze/728…

Here are the slides for my keynote, 'Mobile Exploitation, the past, present, and the future' at #Zer0Con2023. Zer0con was a blast as always, thank you POC_Crew 👨‍👩‍👦‍👦!! 🚀💫 github.com/externalist/pr…

Our very first blog post: “iOS 17, new version, new acronyms” #iOS17 #DFF #sptm #txm df-f.com/blog/ios17

A new post by our iOS research team is up about an interesting info leak that died an untimely death

Our in-depth exploration of #SPTM and #TXM continues df-f.com/blog/ios-17rou…

Will macOS merge with iOS? #iOS #macOS #DFF #DFFENDERS #Debugging df-f.com/blog/macosandi…

'tis the Season - the latest #DFF blog post unpacking insights about anticipated releases of new Apple OS versions. df-f.com/blog/tisthesea…

We at Dataflow Security are currently looking for a senior Linux kernel researcher, feel free to DM if you’re curious :)

Our latest blog post: Tracing Back to the Source | #SPTM Round 3 #TXM #iOS #macOS #DFF df-f.com/blog/sptm3

I have written a blog post about null pointers on Linux: disconnect3d.pl/2025/03/03/whe…

We’ve been asked a lot lately if we're hiring — and the answer is yes. We’re a team of 96 and have multiple positions open. Feel free to share: dfsec.com/#careers

My writeup of the 2023 NSO in-the-wild iOS zero-click BLASTDOOR webp exploit: Blasting Past Webp - googleprojectzero.blogspot.com/2025/03/blasti…

Another year and we're still looking for exceptional talent that are looking to join an amazing research team and contribute to the story we're writing Dataflow Security, if you're interested or just curious about it, I'll be offensivecon and available to chat :)