Open-source
iometa
Fixed kernelcache parsing for iOS 15 and earlier. Debugged Mach-O fixup chains to restore compatibility.
OS SECURITY · RESEARCH
Igor Farias
iOS Security Researcher
I research Apple kernel security by reverse engineering kernel internals, analyzing sandbox and trust mechanisms, and building tooling around them. My work spans experimental research, open-source contributions, and production security pipelines.
Exploit Research
CVE-2025-43534
Discovered a sandbox escape allowing controlled file writes outside intended containers. The vulnerability arises from trust boundary violations between Apple userland daemons.
Impact: A user with physical access to an iOS device may be able to bypass Activation
Lock.
Description: A path handling issue was addressed with improved validation.
Research Tooling
SBPL Viewer
- SBPL parsing and normalization
- Policy graph and inheritance mapping
- Effective permission inspection
Kernel Research
KFD / PUAF Study
- Physical UAF primitives (PUAF)
- pmap, PPL, and VM internals
- Kernel R/W primitive construction
Tooling
KnightWatch
Release integrity gate that validates IPA, XCARCHIVE, APK, and AAB artifacts across CI/CD. Enforces signing checks, metadata consistency, and tamper detection before ship.
Recognition