A Journey of Hunting macOS Kernel Vulnerabilities
A researcher's account of hunting macOS kernel vulnerabilities — methodology, dead ends, and the bugs that made it through.
Zer0Con 2022
Talk delivered at Zer0Con 2022 (Seoul, April 2022). The presentation walks through a sustained effort to find exploitable vulnerabilities in the macOS kernel, covering target selection, code review methodology, fuzzer design, and a discussion of the patches that resulted.