Hacker News
- Accelerating iOS on QEMU with hardware virtualization (KVM) https://alephsecurity.com/2020/07/19/xnu-qemu-kvm/ 5 comments
- SuDump: Exploiting sudo through kernel vulnerability https://alephsecurity.com/2021/10/20/sudump/ 8 comments netsec
- Aruba in Chains: Chaining Vulnerabilities for Fun and Profit https://alephsecurity.com/2021/07/15/aruba-instant/ 5 comments netsec
- Running iOS in QEMU to an interactive bash shell (Part 1) https://alephsecurity.com/2019/06/17/xnu-qemu-arm64-1/ 7 comments netsec
- Exploiting Qualcomm EDL Programmers: Memory & Storage based attacks allowing PBL extraction, rooting, secure boot bypassing & bootloader chain debugging/tracing. Multiple Qualcomm based mobile devices affected (5-part blog post) https://alephsecurity.com/2018/01/22/qualcomm-edl-1/ 2 comments lowlevel
- OnePlus 2 Lack of SBL1 Validation, Broken Secure Boot (CVE-2017-11105) https://alephsecurity.com/vulns/aleph-2017026 5 comments netsec
- Nexus 9 vs. Malicious Headphones: Ephemeral Access to Unrestricted FIQ Debugger (CVE-2017-0648) https://alephsecurity.com/2017/06/13/nexus9-ephemeral-fiq/ 10 comments netsec
- Owning OnePlus 3/3T with a Malicious Charger: The Last Piece of the Puzzle (CVE-2017-5622) https://alephsecurity.com/2017/03/26/oneplus3t-adb-charger/ 9 comments netsec