55 Commits

Author SHA1 Message Date
Joseph Goydish II d129be781c Delete Telemetry-Attribution-Analysis.md 2026-05-05 08:35:53 -07:00
Joseph Goydish II b9ae62f4e6 Document iMessage zero-click exploit chain on iOSTighten Attack Chain Flow; remove persistence/CVE-2026-20700
A zero-click exploit chain targeting iOS 18.4 and below delivers a malicious AMR audio file via iMessage, bypassing BlastDoor and triggering CoreAudio heap corruption (CVE-2025-31200) leading to kernel execution through AMPDU mishandling (CVE-2025-31201). The exploit allows unauthorized use of Secure Enclave-backed keys for signing operations, undermining cryptographic trust.
2026-05-05 08:34:05 -07:00
Joseph Goydish II c750cec0c5 Update Attack Chain Flow.md 2026-05-05 08:24:52 -07:00
Joseph Goydish II 44bba1ba0c Revise CVE information and recommendations in README
Updated CVE details and recommendations in README.
2026-05-05 08:11:39 -07:00
Joseph Goydish II b634d94b68 Update Telemetry-Attribution-Analysis.md 2026-04-07 12:10:57 -04:00
Joseph Goydish II 808ac130c6 Update and rename Forensic Analysis .md to Telemetry-Attribution-Analysis.md 2026-03-09 17:28:20 -04:00
Joseph Goydish II 4eed3d4da9 Update Attack Chain Flow.md 2026-03-09 17:19:19 -04:00
Joseph Goydish II 7bea824131 Update README.md 2026-03-09 17:13:59 -04:00
Joseph Goydish II d5b398efc2 Update README.md 2026-03-09 17:02:32 -04:00
Joseph Goydish II bb1a514e96 Update README.md
Cleaning up
2026-01-19 10:16:56 -05:00
Joseph Goydish II 36bb7d1a0b Update README.md 2026-01-11 15:02:50 -05:00
Joseph Goydish II 45cab4cae4 Delete Exploit Cryptanalysis .md 2026-01-03 21:32:54 -05:00
Joseph Goydish II 67db7fd4d8 Create detailed exploit analysis document
Added a comprehensive technical deep-dive document on exploit analysis focusing on cryptanalysis methodology, exploit mechanics, and detailed findings related to specific vulnerabilities.
2026-01-03 14:26:10 -05:00
Joseph Goydish II 89e980c07a Change title to 'Remote Hardware Hijack Consensus'
Updated the title of the forensic analysis document.
2026-01-03 13:36:45 -05:00
Joseph Goydish II c356b4fdbe Update Attack Chain Flow.md 2026-01-03 01:09:38 -05:00
Joseph Goydish II b8d99e43d3 Rename document from 'CryptoCopy' to 'Pegasus' 2026-01-03 00:26:04 -05:00
Joseph Goydish II 5bf62dd71f Add forensic analysis of Zero-Click attack on iPhone
Documented analysis of a Zero-Click attack chain targeting the Broadcom 4388c0 chipset, detailing the stages from remote exploit to hardware compromise.
2025-12-24 22:58:18 -05:00
Joseph Goydish II de3e5e0c80 Rename Remote Crypto Attack Chain .md to Attack Chain Flow.md 2025-12-24 22:56:18 -05:00
Joseph Goydish II 3af09e9f23 Update Remote Crypto Attack Chain .md 2025-12-06 22:35:58 -05:00
Joseph Goydish II 23a562d9ab Revise title and add section header for iWorm
Updated title and added a new section header.
2025-11-23 20:49:30 -05:00
Joseph Goydish II 7aa972630b Delete 25-01-MPVDT (Updated) [gen-41698] [VRF#25-01-MPVDT] Apple iOS in AudioConverterService 2025-01-23T10_12_31-05_00.eml 2025-11-23 20:46:24 -05:00
Joseph Goydish II e31900dc99 Update README.md 2025-11-23 10:30:51 -05:00
Joseph Goydish II 6c13b55e85 Update README.md 2025-11-23 10:29:07 -05:00
Joseph Goydish II 9a6e05b262 Fix typo in disclosure timeline section 2025-11-23 00:02:52 -05:00
Joseph Goydish II 6c515df183 Update README.md 2025-11-12 17:38:35 -05:00
Joseph Goydish II 8193cca16c Update README.md 2025-11-12 17:36:06 -05:00
Joseph Goydish II cfe660902f Update README.md 2025-11-11 20:18:59 -05:00
Joseph Goydish II 4697b1f7e4 Update Remote Crypto Attack Chain .md 2025-11-11 20:10:04 -05:00
Joseph Goydish II 0f43b3fe61 Update Remote Crypto Attack Chain .md 2025-11-11 20:08:18 -05:00
Joseph Goydish II d5056c3ac7 Update Remote Crypto Attack Chain .md 2025-11-11 20:07:29 -05:00
Joseph Goydish II 323051f4a8 Update Remote Crypto Attack Chain .md 2025-11-11 20:04:05 -05:00
Joseph Goydish II eed0e591d4 Update Remote Crypto Attack Chain .md 2025-11-11 20:03:09 -05:00
Joseph Goydish II 9cdd3672f3 Update Remote Crypto Attack Chain .md 2025-11-11 20:02:19 -05:00
Joseph Goydish II 9fbd5d9747 Update Remote Crypto Attack Chain .md 2025-11-11 18:35:29 -05:00
Joseph Goydish II 7fd8d00902 Update Remote Crypto Attack Chain .md 2025-11-11 18:31:21 -05:00
Joseph Goydish II 080ffc5663 Delete US CERT/Active Exploitaion Submission 01/21 directory 2025-11-09 18:11:51 -05:00
Joseph Goydish II dc91c4401b Update and rename 25.md to Jan 21, 2025 Incident Report.md 2025-11-09 18:10:23 -05:00
Joseph Goydish II 1b9c8c78b2 Create 25.md 2025-11-09 18:03:22 -05:00
Joseph Goydish II 3bc92f6049 Update README.md 2025-11-07 17:47:23 -05:00
Joseph Goydish II cfe0f18bbd Update README.md 2025-11-06 15:19:12 -05:00
Joseph Goydish II b20e321aeb Update README.md 2025-11-05 11:44:27 -05:00
Joseph Goydish II ed1c46abc7 Update README.md 2025-11-05 11:44:05 -05:00
Joseph Goydish II 353716080a Update README.md 2025-11-05 11:43:46 -05:00
Joseph Goydish II c8c4333593 Update README.md 2025-10-06 14:31:05 -04:00
Joseph Goydish II eb0f3281db Update README.md 2025-10-05 12:47:44 -04:00
Joseph Goydish II 914cefbc8e Update README.md 2025-10-05 12:47:07 -04:00
Joseph Goydish II f43829e2ca Update README.md 2025-10-02 17:55:49 -04:00
Joseph Goydish II cff2fa7b67 Add files via upload
Confirmation email via VINCE reporting portal
2025-10-02 17:54:40 -04:00
Joseph Goydish II ab08c533ed Update README.md 2025-09-23 11:06:46 -04:00
Joseph Goydish II e1134e0460 Update README.md 2025-09-23 11:03:15 -04:00