gergelykalman - Network
I published a correction to my slides/blogposts regarding rename(). I have incorrectly stated that rename("./a", "./b")...
https://infosec.exchange/@gergel...I published a correction to my slides/blogposts regarding rename(). I have incorrectly stated that rename("./a", "./b") was racy. It is not.
For most situations this is not a huge deal, but I still feel bad that I misled you all, so beers are on me.
https://gergelykalman.com/corrections-regarding-rename.html
25.3.2025 14:55I published a correction to my slides/blogposts regarding rename(). I have incorrectly stated that rename("./a", "./b")...https://infosec.exchange/@gergel...
Since it's almost been a year and OBTSv7 is around the corner, I published the long overdue writeup for...
https://infosec.exchange/@gergel...Since it's almost been a year and OBTSv7 is around the corner, I published the long overdue writeup for badmalloc:
https://gergelykalman.com/badmalloc-CVE-2023-32428-a-macos-lpe.html
https://infosec.exchange/@gergel...
For those of you who might like it: Here are the slides from my Alligatorcon...
https://infosec.exchange/@gergel...For those of you who might like it: Here are the slides from my Alligatorcon talk:
https://gergelykalman.com/the-forgotten-art-of-filesystem-magic-alligatorcon-2024-slides.html
https://infosec.exchange/@gergel...
I keygened all of my Hungarian ISP's routers last year:https://gergelykalman.com/hacking-isp-cpe-equipment-fiberhome.html
https://infosec.exchange/@gergel...I keygened all of my Hungarian ISP's routers last year:
https://gergelykalman.com/hacking-isp-cpe-equipment-fiberhome.html
8.2.2024 12:09I keygened all of my Hungarian ISP's routers last year:https://gergelykalman.com/hacking-isp-cpe-equipment-fiberhome.htmlhttps://infosec.exchange/@gergel...
Another writeup is up, this time it's sqlol (CVE-2023-32422), a $30,500 macOS TCC...
https://infosec.exchange/@gergel...Another writeup is up, this time it's sqlol (CVE-2023-32422), a $30,500 macOS TCC bypass:
https://gergelykalman.com/sqlol-CVE-2023-32422-a-macos-tcc-bypass.html
Slowly, but surely I will work off my backlog...
15.11.2023 23:06Another writeup is up, this time it's sqlol (CVE-2023-32422), a $30,500 macOS TCC...https://infosec.exchange/@gergel...
Post about "lateralus" (a $30,500 TCC bypass) is live: https://gergelykalman.com/lateralus-CVE-2023-32407-a-macos-tcc-bypass.htmlI...
https://infosec.exchange/@gergel...Post about "lateralus" (a $30,500 TCC bypass) is live: https://gergelykalman.com/lateralus-CVE-2023-32407-a-macos-tcc-bypass.html
I even praise Apple in it. It's wild.
15.11.2023 10:26Post about "lateralus" (a $30,500 TCC bypass) is live: https://gergelykalman.com/lateralus-CVE-2023-32407-a-macos-tcc-bypass.htmlI...https://infosec.exchange/@gergel...
Here are the slides from my OBTS talk:https://gergelykalman.com/unexpected-unreasonable-unfixable-my-slides-from-obts-v6.html
https://infosec.exchange/@gergel...Here are the slides from my OBTS talk:
https://gergelykalman.com/unexpected-unreasonable-unfixable-my-slides-from-obts-v6.html
https://infosec.exchange/@gergel...
To make even more room in my #OBTS talk, here's a trivial TCC bypass writeup...
https://infosec.exchange/@gergel...To make even more room in my #OBTS talk, here's a trivial TCC bypass writeup :)
https://gergelykalman.com/CVE-2023-38571-a-macOS-TCC-bypass-in-Music-and-TV.html
27.9.2023 15:40To make even more room in my #OBTS talk, here's a trivial TCC bypass writeup...https://infosec.exchange/@gergel...
Due to lack of time on my #OBTS talk, here's one of the bugs that didn't make the cut:"unnamed app sandbox escape", aka...
https://infosec.exchange/@gergel...Due to lack of time on my #OBTS talk, here's one of the bugs that didn't make the cut:
"unnamed app sandbox escape", aka CVE-2023-32364
https://gergelykalman.com/CVE-2023-32364-a-macOS-sandbox-escape-by-mounting.html
26.9.2023 14:57Due to lack of time on my #OBTS talk, here's one of the bugs that didn't make the cut:"unnamed app sandbox escape", aka...https://infosec.exchange/@gergel...
