Biting the Apple that Feeds You - macOS Kernel Fuzzing
Offered By: 44CON Information Security Conference via YouTube
Course Description
Overview
Explore macOS kernel fuzzing techniques in this 41-minute conference talk from 44CON 2017. Dive into MWR's platform-agnostic approach for identifying critical flaws in Apple's XNU kernel. Learn about developing fuzzing automation, targeting core subsystems, and addressing architectural differences across platforms. Examine the effectiveness of targeted fuzzing for specific components and discover an in-memory fuzzer combining static and dynamic analysis. Gain insights into achieving greater code coverage, efficiency, and attacking privileged components via IPC. Discuss discovered issues, future improvements, and tools released for enhancing coverage and effectiveness in macOS kernel fuzzing.
Syllabus
Introduction
Why OS X
The fuzzer
Object database
Ciscos
syscall
Siskel
Logging
Seeding
Exit Cisco
Library
Fuzz Loop
Scaling the Fuzz
QMU
Code Coverage
Cocoa Free Support
Coverage Information
In memory fuzz
Fuzzer components
Wrapper library
Extracting attack surface
Pattern matching on struts
Limitations
Modules
Hooking
Challenges
Open method
Sample size
UI Automation
Mutations
Architecture
open source
future plans
previous work
Taught by
44CON Information Security Conference
Related Courses
Supply Chain Unchained - How To Be A Bad SaaS44CON Information Security Conference via YouTube Aviation Security 101
44CON Information Security Conference via YouTube The Anti-Checklist Manifesto
44CON Information Security Conference via YouTube Why Are We Still Doing Authentication Wrong?
44CON Information Security Conference via YouTube What Do Hackers See When They Look at the Clouds
44CON Information Security Conference via YouTube