Outer Web | Explore

Explore >> Select a destination

You are here		jhftss.github.io A New Era of macOS Sandbox Escapes: Diving into an Overlooked Attack Surface and Uncovering 10+ New Vulnerabilities - Mickey's Blogs - Exploring the world with my sword of debugger :)
\|	\|	tantosec.com Grav-ity of the situation: Unauthenticated Access to RCE in Grav CMS	4.7 parsecs away Travel
\|	\|	This blog post explores critical vulnerabilities in Grav CMS and how they can be exploited to escalate privileges and execute code.	4.7 parsecs away Travel
\|	\|	knight.sc syspolicyd internals \| Scott Knight	5.2 parsecs away Travel
\|	\|	With my previous post I took a look at the SystemPolicy.framework and how it kept track of 32-bit applications that had been run. In the process of looking into that I ended up looking into the internals of syspolicyd. Way back in macOS 10.10.5 syspolicyd was part of the security_systemkeychain source code that Apple releases with each version of macOS. Unfortunately since that time syspolicyd was moved out of the security_systemkeychain package and closed sourced. This post details the internals of sysp...	5.2 parsecs away Travel
\|	\|	srcincite.io Smarty Template Engine Multiple Sandbox Escape PHP Code Injection Vulnerabilities	5.2 parsecs away Travel
\|	\|	In this blog post we explore two different sandbox escape vulnerabilities discovered in the Smarty Template Engine that can be leveraged by a context dependa...	5.2 parsecs away Travel
\|	\|	osxdaily.com iOS 17.7.1 & iPadOS 17.7.1 Available for iPhone & iPad	17.8 parsecs away Travel
\|		iOS 17.7.1 & iPadOS 17.7.1 Available for iPhone & iPad	17.8 parsecs away Travel