Explore the world of Android kernel driver fuzzing with this comprehensive Black Hat conference talk. Delve into the critical importance of securing the Android/Linux kernel as it becomes increasingly vulnerable. Learn about DIFUZE, an innovative fuzzing technique specifically designed for Android kernel drivers. Discover how static analysis, LLVM bitcode, and command value analysis are utilized to enhance the fuzzing process. Gain insights into the challenges of kernel fuzzing, the implementation of structure generation, and the use of tools like MangoFuzz and Android Debug Bridge. Examine real-world testing results, including discovered bugs and out-of-bounds issues. Understand the implications for future work in this field and the potential impact on Android security. This 53-minute presentation provides a deep dive into cutting-edge techniques for identifying and mitigating vulnerabilities in Android kernel drivers.
Overview
Syllabus
Introduction
Device Region
iOS ETL
Modular
Android
Why
Static Analysis
Fuzzing
Kernel Fuzzing
LLVM Bitcode
C2 XML
Analysis
Command Values
Summary
Structure Generation
MangoFuzz
I Octal
Android Debug Bridge
Looking for bugs
Testing system
Results
Testing Results
Bugs
Outofbounds
Bug Handler
Future Work
Conclusion
Coverage
Time
Question
Taught by
Black Hat
