Talks | CodeColorist

Queen B: 0-click RCE for Apple Compressor

OBTSv8/2025

Queen B: 0-click RCE for Apple Compressor

Zhi Zhou (@CodeColorist)

Event Slides Video

Hack Different: Pwning iOS 14 with Generation Z Bugz

BlackHat USA/2021

Hack Different: Pwning iOS 14 with Generation Z Bugz

Zhi Zhou (@CodeColorist), Jundong Xie (@Jdddong)

Event Slides Paper Video Parody

See No Eval: Runtime Dynamic Code Execution in Objective-C

RWCTF/2021

See No Eval: Runtime Dynamic Code Execution in Objective-C

Zhi Zhou (@CodeColorist)

Cross-Site Escape: Pwning macOS Safari Sandbox the Unusual Way

BlackHat EU/2020

Cross-Site Escape: Pwning macOS Safari Sandbox the Unusual Way

Zhi Zhou (@CodeColorist)

Event Slides Video

I Want to Break Free: Unusual Logic Safari Sandbox Escapes

TyphoonCon/2019

I Want to Break Free: Unusual Logic Safari Sandbox Escapes

Zhi Zhou (@CodeColorist)

ModJack: Hijacking the macOS Kernel

HITB Amsterdam/2019

ModJack: Hijacking the macOS Kernel

Zhi Zhou (@CodeColorist)

Event Slides Video

Many Birds, One Stone: Exploiting a Single SQLite Vulnerability Across Multiple Software

BlackHat USA/2017

Many Birds, One Stone: Exploiting a Single SQLite Vulnerability Across Multiple Software

Siji Feng (a.k.a slipper), Zhi Zhou (@CodeColorist), Kun Yang (@KelwinYang)

Event Slides Video