https://varik.dev/blog Varik's blog en-us varikmatevosyan@gmail.com (Varik Matevosyan) varikmatevosyan@gmail.com (Varik Matevosyan) Fri, 19 Jun 2026 00:00:00 GMT https://varik.dev/blog/jsc/jsc-exploitation-primitives-part-1 https://varik.dev/blog/jsc/jsc-exploitation-primitives-part-1 Coming from V8 and landing in JavaScriptCore. Building the addrof/fakeobj/read64/write64 ladder from a single out-of-bounds write, and the JSC-specific walls (the gigacage, butterflies, NaN-boxing) that make the last step harder than it is in V8. Fri, 19 Jun 2026 00:00:00 GMT varikmatevosyan@gmail.com (Varik Matevosyan) PWNJSCJavaScriptCoreWebKitSafariBrowser Exploitation