Skip to content
View speedyfriend433's full-sized avatar
🍎
Apple Bug Hunter...
🍎
Apple Bug Hunter...
263 followers · 586 following

Achievements

Achievement: Starstruckx2Achievement: Pull SharkAchievement: YOLOAchievement: Quickdraw

Achievements

Achievement: Starstruckx2Achievement: Pull SharkAchievement: YOLOAchievement: Quickdraw

Block or report speedyfriend433

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
speedyfriend433/README.md

👨‍💻 speedyfriend67

Hey, I'm Jian. I like breaking iOS security mitigations and building weird tools with Swift.

My main focus right now is the Apple Security Bounty program—hunting logic bugs, kernel issues, and writing PoCs.

Recent Security Research

  • CVE-2025-46280 (Assigned Dec 2025)

    • Impact: An app may be able to execute arbitrary code with kernel privileges
    • Description: An out-of-bounds read was addressed with improved bounds checking.

  • CVE-2026-20654

    • Impact: An app may be able to cause unexpected system termination
    • Description: The issue was addressed with improved memory handling.

  • CVE-2026-28867

    • Impact: An app may be able to leak sensitive kernel state
    • Description: This issue was addressed with improved authentication.

The Tech Stack

  • Reversing: IDA Pro, Ghidra, Hopper Disassembler
  • Dev: Swift (SwiftUI)
  • Focus: Bugs in Apple deviecs, Mach-O parsing, Sideloading iPA

Projects

  • IPASigner – Sign & inject tweaks into .ipa files on the fly.
  • ReDyne – Attempting to build a proper native decompiler for iOS.
  • DexLoom – iOS app for running native APKs (Work in Progress).
  • UniGram – Simple app to scrape and push university notifications.

Contact: DM me on Discord, Twitter (@Speedyfriend433) or email speedyfriend433@gmail.com.

Note: I break things to learn how to fix them. No piracy, just research.

🇰🇷 / 🇺🇸

Pinned Loading

  1. ReDyne ReDyne Public

    A native decompiler app for iOS!

    Swift 255 22

  2. DexLoom DexLoom Public

    A brand new simple APK Runner on jailed iOS! In progress for a looong time..

    C 23 4

  3. Swifile-FileManager-2-Swift Swifile-FileManager-2-Swift Public

    Swift 21 3

  4. mdcX mdcX Public

    Experimental Project with file zeroing technique

    Swift 39 2

  5. Xenex Xenex Public

    A powerful framework for injecting custom code into iOS applications

    C 28 4

  6. UniGram UniGram Public

    Unigram is an iOS app that can show forum posts without actually entering the website. currently, supporting specific University

    Swift 2