🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Just posted a rare non-technical short blog aiming to demystify security research a bit alexplaskett.github.io/demystifying-s… Part 1 is focusing on choosing topics, approach, mindset. I feel like as industry we often see the output from research but less about the process of getting there.

Last year, Apple shared a high-level overview of "Memory safe iBoot implementation". I thought it would be nice to reverse and write about it, hope you will find it interesting :) saaramar.github.io/iBoot_firebloo…

Excited to publish my writeup of a novel iOS in-the-wild exploit: The curious case of the fake Carrier .app: googleprojectzero.blogspot.com/2022/06/curiou…

Exodus is experiencing record growth, so we are hiring multiple people for multiple roles! Join our team of l33t hackers and focus on what you love with very little bureaucracy exodusintel.com/careers.html

I’m really excited for us to shed light on some really cool work we’ve been doing to harden the XNU allocator! This has been a huge effort by so many people, and I’m very proud of the direction: security.apple.com/blog/towards-t…

Breaking JIT range assumptions in JSC: here's my writeup for b3typer from bi0sCTF 2022! blog.bi0s.in/2023/01/23/Pwn…

We are finally going to start doing public training again in 2023. Our first training will be in Austin TX in late March: blog.exodusintel.com/2023/02/17/vul…

I am really happy to announce that my research on adobe sandbox escape exploiting a windows CVE has been published on the Exodus Intelligence's blog blog.exodusintel.com/2023/04/06/esc…

Here are the slides for my keynote, 'Mobile Exploitation, the past, present, and the future' at #Zer0Con2023. Zer0con was a blast as always, thank you POC_Crew 👨‍👩‍👦‍👦!! 🚀💫 github.com/externalist/pr…

Check out this cool post by my teammate on the details and exploitation of a v8 race!

> we are having the CTF, and while checking traffic, I noticed that one of the team's exploits is not GLES 3.1 or compute shader specific. I checked that it's a 0day. > I eventually reported the issue to ensure that it actually is taken care of,

Blogged after a while on some research that me and typeconfuser did back in 2020 regarding the exploitation of a range mis-computation issue in WebKit!

If you like memory corruption, low-level internals and building custom decompilers to analyse novel exploits check out the write-up here: googleprojectzero.blogspot.com/2023/10/an-ana…

We wrote about a Chrome bug that arose due to the manner in which V8's Maglev tried to optimize the number of allocations it made. Now, in the newer releases with Trusted Pointers, the v8 heap sandbox looking a bit more formidable 👀

Just published a post on exploiting CVE-2024-0582, a vulnerability in the Linux kernel that remained unpatched in Ubuntu for over two months. Hope you enjoy it! blog.exodusintel.com/2024/03/27/min…

Excited to be in Singapore next month to talk about WebKit ! Would love to chat if you're at Off-By-One Conference !

Vignesh Rao delivering his l33t paper 𝐄𝐱𝐩𝐥𝐨𝐫𝐢𝐧𝐠 𝐖𝐞𝐛𝐊𝐢𝐭'𝐬 𝐉𝐮𝐬𝐭-𝐈𝐧-𝐓𝐢𝐦𝐞 𝐂𝐨𝐦𝐩𝐢𝐥𝐚𝐭𝐢𝐨𝐧 in 🔥 style at Off-By-One Conference . Powering on Day 1 at our inaugural Off-By-One Conference !

My talk on Webkit's JIT compilation at Off-By-One con is up! youtube.com/watch?v=9rt9Er…