Posts
- February 13, 2023 CVE-2022-22655 - TCC - Location Services Bypass
- November 14, 2022 CVE-2022-32929 - Bypass iOS backup's TCC protection
- October 24, 2022 Prologue - The Lord of The Rules
- August 29, 2022 CVE-2017-2533 - The details behind
- June 14, 2022 AMFI Launch Constraints - First Quick Look
- October 29, 2021 CVE-2021-30808 - CVE-2021-1784 strikes back - TCC bypass via mounting
- September 27, 2021 Getting started in macOS security
- June 29, 2021 GateKeeper - Not a Bypass (Again)
- June 10, 2021 macOS Monterey Shortcuts - First look
- May 26, 2021 NOCVE - TeamViewer Local Privilege Escalation Vulnerability
- April 23, 2021 Experiences with Apple Security Bounty
- April 20, 2021 CVE-2020-9900 & CVE-2021-1786 - Abusing macOS Crash Reporter
- January 19, 2021 About com.apple.private.security.clear-library-validation
- January 17, 2021 Divide and Conquer - A technique to bypass NextGen AV
- December 13, 2020 CVE-2020-9771 - Reversing Engineering the Fix
- November 17, 2020 NOCVE - Microsoft Teams for macOS Local Privilege Escalation
- October 22, 2020 Let's talk macOS Authorization
- July 3, 2020 CVE-2020-9771 - mount_apfs TCC bypass and privilege escalation
- June 16, 2020 CVE-2020-14977 - Secure coding XPC Services - Part 5 - PID reuse attacks
- June 12, 2020 CVE-2020-14978 - Secure coding XPC Services - Part 4 - Improved client authorization