Blog

23 Articles

50 Tags

Updated Monthly

Articles about reverse engineering and offensive security research

CVE-2026-28995: My First CVE (This Is Not a Write-Up)

May 15, 2026

4 min read

I got my first CVE. This is not a write-up, just some thoughts on what it took to get there.

ios

macos

security research

+2 more

You Have a Kernel Read/Write. Not Enough! How to Extract Offsets from XNU Kernelcaches

April 5, 2026

13 min read

How to systematically extract struct field offsets from Apple's stripped XNU kernelcache using static analysis alone.

ios

xnu

kernel

+4 more

Understanding and Experimenting with Apple's PAC on iOS

February 5, 2026

11 min read

A hands-on exploration of Pointer Authentication Codes (PAC) on iOS. We'll understand how PAC works at a deep level, explore how PAC signing can be triggered programmatically.

ios

arm

pac

+3 more

Predator iOS Malware: Building a Surveillance Framework - Part 1

January 1, 2026

28 min read

How does Predator spyware transform from running code into active surveillance? This technical deep-dive reverse-engineers the internal factory architecture that dynamically creates camera monitoring, VoIP interception, and keylogging modules through Unix socket commands revealing the infrastructure between exploitation and surveillance

ios

reverse engineering

malware

+2 more

Bypassing iOS Frida Detection with LLDB and Frida

November 24, 2025

6 min read

A complete walkthrough of the 8ksec "FridaInTheMiddle" challenge: bypassing Frida detection, hooking Swift functions, and intercepting arguments on a jailbroken iPhone.

ios

frida

reverse engineering

+2 more

ptrace internals: How it prevents debugger attachment

October 16, 2024

10 min read

Deep dive into ptrace internals, from syscall to kernel implementation, understanding how it prevents debugger attachment and how to bypass it.

macos

ios

anti debugging

+4 more