Use-after-free = memory gets freed but something still holds a pointer to it and tries to use it. On iOS, that turns into:
- Kernel panics
- Breaking out of the sandbox
- Running code at kernel level
- Bypassing stuff like KASLR or PAC
Right now I'm focused on one specific UAF.
If you're into iOS internals, memory corruption, or exploit dev, come hang out:
Good place to ask questions, share ideas, or just lurk and see what others are working on.