Recent posts

Certificates

OSED Journey & Guide

My OSED Journy and Guide

12 Apr 2024

14 minute read

Notes

OSED Notes: (Offensive Security Exploit Developer)

OSED Notes and Guide Lines

30 Mar 2024

85 minute read

MacOS

Exploit Writing Part 2: CVE-2023-26818 MacOS TCC Bypass W/ telegram

In the second part 2nd of writing exploit for the CVE-2023-26818, We level-up the exploit.

12 Sep 2023

6 minute read

MacOS

Exploit Writing Part 1: CVE-2023-26818 MacOS TCC Bypass W/ telegram

Writing full exploit for CVE-2023-26818: MacOS TCC Bypass W/ telegram

06 Sep 2023

13 minute read

MacOS

CVE-2023-26818 Part 2 (Sandbox): MacOS TCC Bypass W/ telegram using DyLib Injection

In 2nd part of the analysis for CVE-2023-26818, We discussing the app sandboxing in MacOS and show how to bypass it. ...

29 Aug 2023

16 minute read

MacOS

CVE-2023-26818 Part1: MacOS TCC Bypass with telegram using DyLib Injection

In this analysis we discussing a vulnerability exist in telegram app on MacOS known as CVE-2023-26818.

01 Aug 2023

20 minute read

Vulnerability/CVE Analysis

CVE-2021-38294: Apache Storm Nimbus Command Injection

Command Injection vulnerability that affects Nimbus server in apache storm.

20 Jun 2023

12 minute read

Vulnerability/CVE Analysis

CVE-2021-44521: Apache Cassandra Remote Code Execution

Detailed analysis for Apache Cassandra CVE-2021-44521 Remote Code Execution & Sandbox/Security Bypass.

28 May 2023

21 minute read