On Security Research Devices
My thoughts on Apple's Security Research Device program and its shortcomings.
A Deep Dive into iOS Code Signing
Apple's code signing is a complex beast, consisting of several different components, each serving its own unique purpose. When I first started working on Meteorite, I found that while there were several resources detailing the internals of code signing, none of them had enough the amount of detail I required
The Art of WebKit Exploitation
I have just presented my first ever talk, "The Art of WebKit Exploitation" at BSides Delhi 2019 — for those not at the conference, it's a talk about everything I've learnt exploiting the WebKit browser engine. Preparing and presenting this talk has been an amazing experience for me — and it would
Persistent R/W on iOS 11.2.6+
I will also be publishing a better write-up in the coming days. Lastly, the contents of the following write-up are under the CC-BY-SA 2.0. You're welcome to use this for whatever you wish, as long as you give credit in a end-user accessible manner, and include a link back