YoVDO

Rootten Apples - Vulnerability Heaven in the iOS Sandbox

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Privilege Escalation Courses iOS Security Courses Kernel Exploitation Courses

Course Description

Overview

Dive into a comprehensive exploration of iOS security vulnerabilities in this conference talk from HITB Security Conference. Discover how attackers target iOS devices and learn about the constant attack surface for containerized applications following Apple's introduction of self-signed applications. Examine code not typically accessible by containerized apps but available to other processes, regardless of security context. Uncover multiple privilege escalation vulnerabilities affecting all iOS devices and witness a detailed exploitation demonstration that chains these vulnerabilities together, leading to arbitrary kernel code execution and bypassing all current iOS security mitigations. Gain insights from mobile security researcher Adam Donenfeld as he shares his findings and expertise in this 44-minute presentation on the hidden vulnerabilities within the iOS sandbox.

Syllabus

#HITBGSEC 2017 Conf D2 - Rootten Apples: Vulnerability Heaven In The iOS Sandbox - Adam Donenfeld


Taught by

Hack In The Box Security Conference

Related Courses

XNU Heap Exploitation - From Kernel Bug to Kernel Control
nullcon via YouTube
Kernel Exploitation with a File System Fuzzer
Hack In The Box Security Conference via YouTube
iOS 10 Kernel Heap Revisited
Hack In The Box Security Conference via YouTube
Swiping Through Modern Security Features
Hack In The Box Security Conference via YouTube
Turning - Page Tables - Bypassing Advanced Kernel Mitigations Using Page Tables Manipulations
BSidesLV via YouTube