Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Finding Vulnerabilities in iOS - MacOS Networking Code

Hack In The Box Security Conference via YouTube

Overview

Explore the intricacies of iOS and macOS networking code vulnerabilities in this 50-minute conference talk from the Hack In The Box Security Conference. Delve into the complexities of networking protocols and their impact on code security. Learn about the discovery of multiple remote code execution vulnerabilities in Apple's XNU operating system kernel, specifically related to mbuf processing. Gain insights into network packet structures, the mbuf datatype, and how XNU processes them. Examine corner cases that led to vulnerabilities and understand the custom variant analysis technique using Semmle QL for bug discovery. Discover C programming techniques used to implement proof-of-concept exploits, complete with kernel-crashing demonstrations. Cover topics such as TCP/IP packet structure, TCP options, raw socket programming, stack buffer overflow, and NFS mount vulnerabilities. Acquire knowledge about security research methodologies, including the use of Query Language (QL) for finding and analyzing potential vulnerabilities in complex networking code.

Syllabus

Introduction
Story of 3 bugs
Extra topics
PacketMangal bug
Finding security vulnerabilities
Query Language QL
TCPIP Packet Structure
TCP Options
Raw Socket Programming
The Fix
The struct
Whats an nbar
Whats an EM buff
Stack Buffer Overflow
Infinite Loop Bug
NFS Mount
M buff copy
Macros
Fake NFS Server
Eve 999
Packet Mangler
Source and Sink
Query Results
Query Explanation
Conclusion

Taught by

Hack In The Box Security Conference

Reviews

Start your review of Finding Vulnerabilities in iOS - MacOS Networking Code

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.