Why isn’t the checksum length increased on macOS to mitigate generic heap exploitation?

I’ve been studying heap exploitation on Linux/macOS for learning purposes.

Many of the generic exploits on macOS rely on brute-forcing the 4-bit checksum derived from the rack’s cookie value. This effectively results in a 2^… Continue reading Why isn’t the checksum length increased on macOS to mitigate generic heap exploitation?

How to get gain the knowledge to be a beginner penetration tester on my own? [on hold]

I want to apply for a job as a penetration tester in a good company. I have a fairly good knowledge of programming and have experience as a back-end developer.

I started to work with Burpsuite, ZAP, Metasploitable2, Juicesho… Continue reading How to get gain the knowledge to be a beginner penetration tester on my own? [on hold]

Learning path to more advanced security knowledge? (security in OS-context mostly) [on hold]

Some background:
I obtained an Msc degree in scientific computing 7 years ago.
Since then I’ve been working in government IT as an IT / business analist.
My exposure to enterprise IT is mostly conceptual from discussions with… Continue reading Learning path to more advanced security knowledge? (security in OS-context mostly) [on hold]