Brandon Azad (@bazad)
github

bazad

Twitter logo Share LinkedIn logo Share Facebook logo Share
  • Stars
    star
    1,580
  • Global Rank 19,614 (Top 0.7 %)
  • Followers 1,018
  • Registered almost 12 years ago
  • Most used languages
    C
         84.4 %
    Makefile     3.1 %
    CSS
         3.1 %
    Python
         3.1 %
    C++
         3.1 %
    Objective-C
         3.1 %

Top repositories

1

ida_kernelcache

An IDA Toolkit for analyzing iOS kernelcaches.
Python
270
star
2

blanket

CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesigning bypass.
C
242
star
3

memctl

An iOS kernel introspection tool.
C
214
star
4

x18-leak

CVE-2018-4185: iOS 11.2-11.2.6 kernel pointer disclosure introduced by Apple's Meltdown mitigation.
C
86
star
5

rootsh

Local privilege escalation for OS X 10.10.5 via CVE-2016-1828.
C
83
star
6

threadexec

A library to execute code in the context of other processes on iOS 11.
C
74
star
7

presentations

Slides from my conference presentations.
74
star
8

ios-command-line-tool

Example showing how to build a standalone iOS executable using Xcode.
Objective-C
69
star
9

physmem

Local privilege escalation through macOS 10.12.1 via CVE-2016-1825 or CVE-2016-7617.
C
67
star
10

launchd-portrep

CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.
C
57
star
11

xpc-string-leak

CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.
C
50
star
12

devicetree-parse

A tool to parse Apple's binary device tree format.
C
46
star
13

macho_gadgets

A tool to find gadgets in the iOS kernelcache.
C
34
star
14

ctl_ctloutput-leak

CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.
C
30
star
15

AppleJPEGDriver-memleak

Kernel memory leak/local DOS on iOS 11.
C
30
star
16

gsscred-race

CVE-2018-4331: Exploit for a race condition in the GSSCred system service on iOS 11.2.
C
26
star
17

memctl-kext-core

A memctl core for macOS that uses a kernel extension.
C++
15
star
18

IOAccelerator-leak

Kernel heap pointer disclosure in IOGraphicsFamily.
C
14
star
19

memctl-tfp0-core

A memctl core for jailbroken iOS devices.
C
11
star
20

flow_divert-leak

Kernel heap read buffer overflow on macOS/iOS requiring root.
C
11
star
21

bazad.github.io

My security blog.
CSS
10
star
22

mincore-dos

Local denial of service exploit for iOS 11/macOS 10.13.
Makefile
10
star
23

xpc-crash

An out-of-bounds read in libxpc that can be used to crash XPC services.
C
9
star
24

kldstat-stack-disclosure

A kernel stack disclosure in FreeBSD.
C
9
star
25

gsscred-move-uaf

CVE-2018-4343: Proof-of-concept for a use-after-free in the GSSCred daemon on macOS and iOS.
C
9
star
26

memctl-physmem-core

A memctl core that uses the physmem exploit.
C
8
star
27

IOMFB-DOS-1

Local denial of service on iOS 11.2.
C
7
star
28

flow_divert-memleak

Memory leak in XNU requiring root privileges.
C
7
star
29

IOFireWireFamily-null-deref

CVE-2017-2388: Null-pointer dereference in IOFireWireFamily.
C
4
star
30

flow_divert-heap-overflow

Proof-of-concept exploit for CVE-2016-1827 on OS X Yosemite.
C
4
star
31

sysctl_coalition_get_pid_list-dos

CVE-2017-7173: Local denial of service for iOS requiring root privileges.
C
4
star
32

mach_portal_memctl

An example of how to use libmemctl with mach_portal.
C
3
star
33

IOFireWireFamily-overflow

CVE-2016-7608: Buffer overflow in IOFireWireFamily.
C
3
star