This repo contains exploit code as used by Ret2 Systems at PWN2OWN 2018. It has been released for educational purposes, detailed by a series of blogposts.
These were used as zero-day exploits against macOS 10.13.3 & Safari/JSC on March 16th, 2018.
/jsc- JavaScriptCore Exploit & PoC for CVE-2018-4192/windowserver- WindowServer Exploit & PoC for CVE-2018-4193
The contents of this repo are licensed and distributed under the MIT license.
Check out https://ret2.io/trainings