61 tags
all (51)#meta (1)#styleguide (1)#macos (16)#exploitation (1)#code-signing (1)#internals (2)#sandbox (2)#privacy (3)#edr (1)#defense (3)#performance (7)#methodology (1)#tracing (1)#ebpf (3)#cpu (1)#flame-graphs (1)#memory (3)#oom (1)#filesystems (1)#disk (1)#networking (1)#tcp (1)#kernel (6)#sanitizers (2)#fuzzing (2)#linux (2)#llm (19)#agents (9)#cve (1)#transformers (1)#ai-safety (7)#jailbreak (2)#vulnerabilities (2)#bootkit (1)#rootkit (1)#malware (2)#datasets (1)#prompt-injection (2)#supply-chain (1)#red-teaming (4)#backdoor (1)#threat-modeling (1)#reverse-engineering (1)#shellcode (1)#dylib-injection (1)#mach-ipc (1)#hooking (1)#xpc (1)#privilege-escalation (2)#sandbox-escape (1)#tcc (1)#filesystem (1)#kext (1)#pentesting (1)#persistence (1)#firmware (1)#bootloader (1)#vulnerability-detection (1)#arm (1)#speculative-execution (1)#side-channel (1)
#meta
- [ 2023-01-01 ] Style Guide & Feature Test
#styleguide
- [ 2023-01-01 ] Style Guide & Feature Test
#macos
- [ 2026-06-04 ] macOS Penetration Testing: Assembling the Full Chain
- [ 2026-06-03 ] Getting Kernel Code Execution: Racing the KEXT Loader
- [ 2026-05-27 ] Symlink and Hardlink Attacks: Lying to Root About Where Files Live
- [ 2026-05-20 ] Bypassing TCC: Three Ways Around macOS Privacy Controls
- [ 2026-05-13 ] The macOS Sandbox: Profiles, Internals, and Two Escapes
- [ 2026-05-06 ] XPC Attacks: When Privileged Helpers Forget to Ask Who's Calling
- [ 2026-04-29 ] Function Hooking on macOS: Interposing, Swizzling, and a Stolen KeePass Password
- [ 2026-04-22 ] The Mach Microkernel: Injecting Code Through a Task Port
- [ 2026-04-15 ] Dylib Injection and Hijacking: Getting Your Code Into Someone Else's Process
- [ 2026-04-08 ] Writing macOS Shellcode From Scratch: Syscalls, Bind Shells, and the 0x2000000 Trick
- [ 2026-04-01 ] Reading Mach-O Binaries: The macOS Reverse Engineering Toolkit
- [ 2026-03-25 ] macOS Internals: Drawing the Attacker's Map
- [ 2023-10-29 ] Deconstructing macOS Security: Endpoint Detection and Hardening
- [ 2023-10-28 ] Deconstructing macOS Security: The Sandbox and TCC
- [ 2023-10-27 ] Deconstructing macOS Security: Code Signing and Notarization
- [ 2023-10-26 ] Deconstructing macOS Security: XNU, SIP, and The Ring Model
#exploitation
- [ 2023-10-26 ] Deconstructing macOS Security: XNU, SIP, and The Ring Model
#code-signing
- [ 2023-10-27 ] Deconstructing macOS Security: Code Signing and Notarization
#internals
- [ 2026-03-25 ] macOS Internals: Drawing the Attacker's Map
- [ 2023-10-27 ] Deconstructing macOS Security: Code Signing and Notarization
#sandbox
- [ 2026-05-13 ] The macOS Sandbox: Profiles, Internals, and Two Escapes
- [ 2023-10-28 ] Deconstructing macOS Security: The Sandbox and TCC
#privacy
- [ 2026-05-20 ] Bypassing TCC: Three Ways Around macOS Privacy Controls
- [ 2026-02-26 ] The End of Online Anonymity? How LLMs Are Cracking the Code of Practical Obscurity
- [ 2023-10-28 ] Deconstructing macOS Security: The Sandbox and TCC
#edr
#defense
#performance
- [ 2024-02-28 ] Maybe It Was the Network After All: TCP Latency With Evidence
- [ 2024-02-21 ] When the Disk Did Do It: Block I/O Latency Without the Averages
- [ 2024-02-14 ] The Disk Didn't Do It: File System Latency Is What Your App Feels
- [ 2024-02-07 ] Free Memory Is Memory Doing Nothing: Page Cache, Reclaim, and the OOM Killer
- [ 2024-01-31 ] Busy Doing Nothing: CPU Utilization, Run Queues, and IPC
- [ 2024-01-24 ] Better Flashlights: How Linux Observability Works Under the Tools
- [ 2024-01-17 ] Where the Light Is Best: Why Performance Analysis Needs a Method
#methodology
#tracing
#ebpf
#cpu
- [ 2024-01-31 ] Busy Doing Nothing: CPU Utilization, Run Queues, and IPC
#flame-graphs
- [ 2024-01-31 ] Busy Doing Nothing: CPU Utilization, Run Queues, and IPC
#memory
- [ 2025-06-25 ] A Journey Through Linux Kernel Memory Management
- [ 2024-11-05 ] Emulating Memory Sealing in Linux - A Deep Dive
- [ 2024-02-07 ] Free Memory Is Memory Doing Nothing: Page Cache, Reclaim, and the OOM Killer
#oom
#filesystems
#disk
#networking
#tcp
#kernel
- [ 2026-06-03 ] Getting Kernel Code Execution: Racing the KEXT Loader
- [ 2025-06-25 ] A Journey Through Linux Kernel Memory Management
- [ 2024-12-21 ] Kernel Diaries - Introduction
- [ 2024-11-05 ] Emulating Memory Sealing in Linux - A Deep Dive
- [ 2024-07-20 ] Understanding KASan: Fortifying Kernel Security with Advanced AddressSanitization
- [ 2024-07-07 ] Exploring Kernel Sanitizers: Enhancing System Stability and Security
#sanitizers
#fuzzing
#linux
- [ 2024-12-21 ] Kernel Diaries - Introduction
- [ 2024-11-05 ] Emulating Memory Sealing in Linux - A Deep Dive
#llm
- [ 2026-05-05 ] AI Red Teaming in the Agentic Era: From Weeks to Hours
- [ 2026-02-26 ] The End of Online Anonymity? How LLMs Are Cracking the Code of Practical Obscurity
- [ 2026-02-21 ] Can a 7B Model Beat GPT-o3 at Finding Bugs? Meet VulnLLM-R
- [ 2026-02-16 ] Securing the Agentic Future: A Deep Dive into AI-Agent Protocol Threats
- [ 2026-02-14 ] Prompt Injection is Dead. Long Live Promptware: The 7-Stage Kill Chain
- [ 2026-02-09 ] Finding Backdoors in LLMs Using Their Own Memory
- [ 2026-02-05 ] Meet Co-RedTeam: How Multi-Agent AI is Automating Red Teaming
- [ 2026-02-02 ] Automating the Hackers: How AGENTICRED is Revolutionizing AI Red-Teaming
- [ 2026-01-15 ] Guarding the Bot: How AgentGuardian Secures AI Agents Using Learned Access Control
- [ 2026-01-08 ] The Art of Deception: How HoneyTrap Turns the Tables on LLM Jailbreakers
- [ 2026-01-01 ] The AI Weakness You Didn't Expect: Why Dark Patterns Are Fooling Your Smartest Agents
- [ 2025-12-30 ] The Rookie Hacker: How LLMs are Leveling the Cybersecurity Playing Field
- [ 2025-12-30 ] Beyond the Receipt: How Agentic AI Can Build Self-Defending Software Supply Chains
- [ 2025-12-25 ] Automated Hiring is Broken: How Adversarial Prompts are Exploiting LLM Resume Screeners
- [ 2025-12-12 ] Unveiling the Challenges of Real-World AI Safety with TOXICCHAT
- [ 2025-12-10 ] Sift or Get Off the PoC: How SiftRank Uses LLMs to Find Vulnerabilities in a Haystack
- [ 2025-12-03 ] The Bard's Backdoor: How Poetry is Breaking AI Safety
- [ 2025-09-02 ] Why AI Hallucinates: Peering Inside the Transformer Brain
- [ 2025-06-01 ] Scaling Security Testing: Closing the Reachability Gap with LLM Agents
#agents
- [ 2026-05-05 ] AI Red Teaming in the Agentic Era: From Weeks to Hours
- [ 2026-02-16 ] Securing the Agentic Future: A Deep Dive into AI-Agent Protocol Threats
- [ 2026-02-05 ] Meet Co-RedTeam: How Multi-Agent AI is Automating Red Teaming
- [ 2026-02-02 ] Automating the Hackers: How AGENTICRED is Revolutionizing AI Red-Teaming
- [ 2026-01-15 ] Guarding the Bot: How AgentGuardian Secures AI Agents Using Learned Access Control
- [ 2026-01-01 ] The AI Weakness You Didn't Expect: Why Dark Patterns Are Fooling Your Smartest Agents
- [ 2025-12-30 ] Beyond the Receipt: How Agentic AI Can Build Self-Defending Software Supply Chains
- [ 2025-12-10 ] Sift or Get Off the PoC: How SiftRank Uses LLMs to Find Vulnerabilities in a Haystack
- [ 2025-06-01 ] Scaling Security Testing: Closing the Reachability Gap with LLM Agents
#cve
- [ 2025-06-25 ] A Journey Through Linux Kernel Memory Management
#transformers
- [ 2025-09-02 ] Why AI Hallucinates: Peering Inside the Transformer Brain
#ai-safety
- [ 2026-02-09 ] Finding Backdoors in LLMs Using Their Own Memory
- [ 2026-01-01 ] The AI Weakness You Didn't Expect: Why Dark Patterns Are Fooling Your Smartest Agents
- [ 2025-12-30 ] The Rookie Hacker: How LLMs are Leveling the Cybersecurity Playing Field
- [ 2025-12-25 ] Automated Hiring is Broken: How Adversarial Prompts are Exploiting LLM Resume Screeners
- [ 2025-12-12 ] Unveiling the Challenges of Real-World AI Safety with TOXICCHAT
- [ 2025-12-03 ] The Bard's Backdoor: How Poetry is Breaking AI Safety
- [ 2025-09-02 ] Why AI Hallucinates: Peering Inside the Transformer Brain
#jailbreak
#vulnerabilities
#bootkit
#rootkit
#malware
#datasets
#prompt-injection
#supply-chain
#red-teaming
- [ 2026-05-05 ] AI Red Teaming in the Agentic Era: From Weeks to Hours
- [ 2026-02-05 ] Meet Co-RedTeam: How Multi-Agent AI is Automating Red Teaming
- [ 2026-02-02 ] Automating the Hackers: How AGENTICRED is Revolutionizing AI Red-Teaming
- [ 2025-12-30 ] The Rookie Hacker: How LLMs are Leveling the Cybersecurity Playing Field
#backdoor
- [ 2026-02-09 ] Finding Backdoors in LLMs Using Their Own Memory
#threat-modeling
#reverse-engineering
#shellcode
#dylib-injection
#mach-ipc
- [ 2026-04-22 ] The Mach Microkernel: Injecting Code Through a Task Port
#hooking
#xpc
#privilege-escalation
#sandbox-escape
- [ 2026-05-13 ] The macOS Sandbox: Profiles, Internals, and Two Escapes
#tcc
- [ 2026-05-20 ] Bypassing TCC: Three Ways Around macOS Privacy Controls
#filesystem
#kext
- [ 2026-06-03 ] Getting Kernel Code Execution: Racing the KEXT Loader
#pentesting
- [ 2026-06-04 ] macOS Penetration Testing: Assembling the Full Chain
#persistence
- [ 2026-06-04 ] macOS Penetration Testing: Assembling the Full Chain
#firmware
- [ 2026-06-05 ] SoK: Bootloader Security Is Worse Than You Think
#bootloader
- [ 2026-06-05 ] SoK: Bootloader Security Is Worse Than You Think
#vulnerability-detection
- [ 2026-06-05 ] SoK: Bootloader Security Is Worse Than You Think