Sitemap - 2026 - Calif

Squidbleed (CVE-2026-47729)

Apple Internals: Swift in the Kernel

How to format a ciphertext

OOBdump: Relocation Oriented Programming

Codex Discovered a Hidden HTTP/2 Bomb

RedSun: Exploiting Windows Defender's Remediation Workflow for Local Privilege Escalation

Needle in a haystack: measuring the impact of two nginx RCEs

An AI audit of FreeBSD

First public macOS kernel memory corruption exploit on Apple M5

Using IDA to Find Bugs in IDA (with Claude)

CVE-2026-7270: How I Get Root on FreeBSD with a Shell Script

MAD Bugs: Finding and Exploiting a 21-Year-Old Vulnerability in PHP

MAD Bugs: QEMU and UTM Escape

MAD Bugs: RCE in Ladybird

MAD Bugs: An Apple Kernel Bug, Brought to You by Microsoft

MAD Bugs: All Your Reverse Engineering Tools Are Belong to US

MAD Bugs: "cat readme.txt" is not safe in iTerm2

We Asked Claude to Audit Sagredo's qmail. It found a RCE.

Learning to Jailbreak an iPhone with Claude (Part 1)

Codex Hacked a Samsung TV

Claude + Humans vs nginx: CVE-2026-27654

MAD Bugs: Feeding Claude Phrack Articles for Fun and Profit

MAD Bugs: Claude Found an Auth Bypass in NSA's Ghidra Server

MAD Bugs: Discovering a 0-Day in Zero Day

MAD Bugs: Claude Wrote a Full FreeBSD Remote Kernel RCE with Root Shell (CVE-2026-4747)

MAD Bugs: vim vs emacs vs Claude

MAD Bugs: Month of AI-Discovered Bugs

Reverse engineering Apple’s silent security fixes

Taking Apart iOS Apps: Anti-Debugging and Anti-Tampering in the Wild

A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts