Specializing in iOS/macOS kernel security, vulnerability research, and reverse engineering. Focused on identifying critical vulnerabilities in Apple's ecosystem, building security tooling, and contributing to open-source security projects.
Discovered and weaponized a logical vulnerability in iOS download daemons (itunesstored), achieving arbitrary file write outside the application sandbox through malicious SQLite database manipulation.
iFood · Brazil's #1 Delivery Platform
1st place in binary exploitation and reverse engineering challenges.
Fixed kernelcache parsing crash for iOS 15 and earlier. Patch merged upstream by Siguza.
Universal watchOS 32-bit iBoot patcher for security research. Defeats IMG4 Secure Boot chain on Apple Watch S1-S3 devices (watchOS 2.x-8.x) through ARM32 Thumb-2 instruction pattern scanning and signature validation bypasses.
Parser for Apple's undocumented Sandbox Profile Language, enabling deep static analysis of iOS/macOS sandbox boundaries.
Rust-based SAST engine for mobile binary validation. Enforces zero-trust deployment policies through Mach-O inspection and entropy analysis.
Contributed to iOS Runtime Application Self-Protection framework protecting enterprise banking applications at scale.
