Posts

• October 29, 2021 CVE-2021-30808 - CVE-2021-1784 strikes back - TCC bypass via mounting
• September 27, 2021 Getting started in macOS security
• June 29, 2021 GateKeeper - Not a Bypass (Again)
• June 10, 2021 macOS Monterey Shortcuts - First look
• May 26, 2021 NOCVE - TeamViewer Local Privilege Escalation Vulnerability
• April 23, 2021 Experiences with Apple Security Bounty
• April 20, 2021 CVE-2020-9900 & CVE-2021-1786 - Abusing macOS Crash Reporter
• January 19, 2021 About com.apple.private.security.clear-library-validation
• January 17, 2021 Divide and Conquer - A technique to bypass NextGen AV
• December 13, 2020 CVE-2020-9771 - Reversing Engineering the Fix
• November 17, 2020 NOCVE - Microsoft Teams for macOS Local Privilege Escalation
• October 22, 2020 Let's talk macOS Authorization
• July 3, 2020 CVE-2020-9771 - mount_apfs TCC bypass and privilege escalation
• June 16, 2020 CVE-2020-14977 - Secure coding XPC Services - Part 5 - PID reuse attacks
• June 12, 2020 CVE-2020-14978 - Secure coding XPC Services - Part 4 - Improved client authorization
• June 9, 2020 The AMFI MACF policy system call
• May 29, 2020 CVE-2020-0984 - Secure coding XPC Services - Part 3 - Incorrect client verification
• May 12, 2020 Kernel Debugging macOS with SIP
• March 22, 2020 Secure coding XPC Services - Part 2 - Checking CS (CodeSigning) flags of the client
• March 18, 2020 TALK - Exploiting directory permissions on macOS

• 1
• 2
• ›
• »