22 - PlunderVolt, Real-World Bug Hunting, Presidents Cup CTF, SockPuppet and more

17 December 2019

Show Notes

22 - PlunderVolt, Real-World Bug Hunting, Presidents Cup CTF, SockPuppet and more

Last Episode of the Year

Real-World Bug Hunting: A Field Guide to Web Hacking

Additional Links: http://www.phrack.org/papers/attacking_javascript_engines.html

President's Cup

Better Password Protections [in Chrome]

Apple DMCA's SEP Key

Additional Links: https://en.wikipedia.org/wiki/Illegal_number

Rosita: Towards Automatic Elimination of Power-Analysis Leakage in Ciphers

Camouflage: Hardware-assisted CFI for the ARM Linux kernel

Binary Planting with the npm CLI

Local Privilege Escalation in OpenBSD's dynamic loader (CVE-2019-19726)

AirDoS: Remotely render any nearby iPhone or iPad unusable

Digital Lockpicking - Stealing Keys to the Kingdom (KeyWe Smart Lock)

Additional Links: https://labs.f-secure.com/advisories/keywe-smart-lock-unauthorized-access-traffic-interception

SockPuppet: A Walkthrough of a Kernel Exploit for iOS 12.4

Maddie Stone: Whatsup with WhatsApp: A Detailed Walk Through of Reverse Engineering CVE-2019-3568

Client-side Vulnerabilities in Commercial VPNs

A Technical Review of Connected Toy Security

Additional Links: https://www.which.co.uk/news/2019/12/kids-karaoke-machines-and-smart-toys-from-mattel-and-vtech-among-those-found-to-have-security-flaws-in-a-which-investigation/

Interactive Buffer Overflow Exploitation

Additional Links: https://github.com/bordplate/js86 https://nagarrosecurity.com/blog/interactive-rop-tutorial