Booting the iOS Kernel to an Interactive Bash Shell on QEMU

Presented at Black Hat Europe 2019, Dec. 4, 2019, 4:50 p.m. (50 minutes)

Booting the iOS kernel on QEMU with an interactive bash shell and a live debugger attached to the kernel. A major step forward in the direction of having a full iOS open source system emulator on QEMU. The research details and demo will be presented in this talk.

Presenters:

• Jonathan Afek - Aleph security research team manager, HCL/AppScan
  Jonathan Afek is managing the Aleph security research team - the security research team by HCL/AppScan. He has 15 years of security research and low level software development. He has worked in various software fields from wifi firmware through storage systems, application security, memory exploitation, reverse engineering and kernel dev and security research.

Links:

• https://www.blackhat.com/eu-19/briefings/schedule/#booting-the-ios-kernel-to-an-interactive-bash-shell-on-qemu-17498
• https://www.youtube.com/watch?v=reNv-7WWRw0

Similar Presentations:

• Black Hat Europe 2021 / ECMO: Rehost Embedded Linux Kernels via Peripheral Transplantation
• Black Hat USA 2022 / TruEMU: An Extensible, Open-Source, Whole-System iOS Emulator
• Black Hat Asia 2019 / iOS Dual Booting Demystified