Resources

People often ask me "How did you learn how to hack?" The answer: by reading. This page is a collection of the blog posts and other articles that I have accumulated over the years of my journey. Enjoy!

This was found in the XNU operating system, which runs on macOS and iOS.

The out-of-bounds write was thought to happen within a m_copydata function. However, it was a few lines of code later... It is interesting to me that Ian Beer (from Google Project Zero) messaged Kevin about this!

An error message having an unusually long header causes buffer overflow here.

The bug was found by using CodeQL, which is a variant analysis tool.