gracecondition
Deep dives into OS internals, binary exploitation, and low-level security research
Explore ResearchLatest Content
research
Jun 25, 2026
DirtySlide - root on macOS from one missing bounds check
Unprivileged to root on macOS 26.5, no entitlements, Developer Mode off, through one unbounded loop in the dyld shared-cache slide walker. Fixed in macOS …
CTF
Dec 22, 2025
wtf - pwnable.kr
Writeup of the pwnable wtf CTF Challenge
analysis
Dec 3, 2025
ParagOWNED - how CVE-2025-43200 likely abused Apple Intelligence to take control of an iPhone
How the paragon iMessage exploit worked.
analysis
Oct 10, 2025
machsec - detecting XNU binary mitigations
This article explains my new mitigation detection tool machsec, for iOS/macOS, alongside binary mitigations available on XNU
CTF
Nov 15, 2024
Passcode - pwnable.kr
Writeup of the pwnable passcode CTF Challenge