Pay attention to what you clone with Xcode 15.4. It might seem obvious, but it is vulnerable to CVE-2024-32002 too. github.com/p1tsi/misc/tre…

Here the description of how I gained a bounty from NordVPN. #BugBounty p1tsi.github.io/posts/NordVPN-…

New post. p1tsi.github.io/posts/CVE-2024…

Check out our new blog post !

Ever wondered which macOS system services have specific entitlements? Or maybe which services import a certain library or symbol? To answer these questions I had fun developing this simple tool. github.com/p1tsi/dora

🎉 My new blog post is about a PackageKit vulnerability I learned from p1tsi 's blog posts. 🍎🐛macOS LPE via the .localized directory I tried convincing Apple to universally fix it with no luck. Go hunt for vulnerable pkg installers! There is a ton :-( Happy Friday!

It seems like Predator devs took a glance at my repo 😦 /s github.com/p1tsi/NoShutdo…