Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

DIFUZE - Android Kernel Driver Fuzzing

Black Hat via YouTube

Overview

Explore the world of Android kernel driver fuzzing with this comprehensive Black Hat conference talk. Delve into the critical importance of securing the Android/Linux kernel as it becomes increasingly vulnerable. Learn about DIFUZE, an innovative fuzzing technique specifically designed for Android kernel drivers. Discover how static analysis, LLVM bitcode, and command value analysis are utilized to enhance the fuzzing process. Gain insights into the challenges of kernel fuzzing, the implementation of structure generation, and the use of tools like MangoFuzz and Android Debug Bridge. Examine real-world testing results, including discovered bugs and out-of-bounds issues. Understand the implications for future work in this field and the potential impact on Android security. This 53-minute presentation provides a deep dive into cutting-edge techniques for identifying and mitigating vulnerabilities in Android kernel drivers.

Syllabus

Introduction
Device Region
iOS ETL
Modular
Android
Why
Static Analysis
Fuzzing
Kernel Fuzzing
LLVM Bitcode
C2 XML
Analysis
Command Values
Summary
Structure Generation
MangoFuzz
I Octal
Android Debug Bridge
Looking for bugs
Testing system
Results
Testing Results
Bugs
Outofbounds
Bug Handler
Future Work
Conclusion
Coverage
Time
Question

Taught by

Black Hat

Reviews

Start your review of DIFUZE - Android Kernel Driver Fuzzing

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.