David Maynor as release an impressive article, on the e-zine Uninformed that details the wifi OSX exploit he has shown in the Black hat conference. It is called “OS X Kernel-mode Exploitation in a Weekend”. Technicals details seems accurate even if I havn’t yet found the time to verify them. The exploitation technique is quite impressive since it involves controling the structure to overwrite a function pointer. This is achived by crafting a beacon packet. It is indeed a nice exploit that deserve to be studied.
The article is available Here
Archive for September, 2007 Page 3 of 4
Sep 20
OSx Wifi Exploit get public (article)
in Collection and research, In Internet, In Publications, Security and Software.
0 Comments
Printable version
Printable version
Polygraph is a tool designed to generate attack signature from a corpus of data. The idea is to be able to generate quickly and automatically the signature of an attack. This is useful for Worms detection for instance. This is a work by James Newsome, Brad Karp, and Dawn Song. Since them many “anti-polygraph” papers have been published. In particular Allergy attacks (S. Chung and K. Mok) are very interessting, However it is very nice and stimulating to have a publicly available tool to test ideas.
The paper (PDF version) that details this tool was presented at S&P 2005
The Polygraph source code can be downloaded here
Latest Comments