Explore advanced techniques for exploiting the XNU kernel in Apple's El Capitan operating system in this 37-minute Black Hat conference talk. Delve into the challenges posed by kernel exploit mitigations like KASLR and SMEP, and discover new methods to overcome them. Learn about the mitigation of "vm_map_copy" corruption in OS X 10.11 and iOS 9, and uncover innovative approaches to bypass these security measures. Witness a live demonstration of a kernel exploit that circumvents System Integrity Protection (rootless) on the latest version of El Capitan, gaining valuable insights into the evolving landscape of Apple system security and exploitation techniques.
Overview
Syllabus
Attacking The XNU Kernel In El Capitain
Taught by
Black Hat