From Crash …to trash? cash? or (bin)bash?

Presented at Objective by the Sea version 6.0 (2023), Oct. 13, 2023, 5:05 p.m. (25 minutes).

Discovering macOS bugs simply by using your Mac? It may sound surprising, but it's (sadly) true! This talk, a crash course in crash reports, will take you into the fascinating world of crash reports and explore how reports, (gathered solely from my computer), unveiled a multitude of bugs. \n\n We will begin by examining the fundamental information presented in crash reports. Then, following leads from these reports, we'll delve into more advanced topics such as reversing Swift and ARM64 which can reveal the underlying bug(s). \n\n And while some of the discovered bugs are yes trash, others, such as the use of uninitialized variables, instances of use after frees, and even heap overflows, turned out to be far more valuable!

Presenters:

• Patrick Wardle - Founder, Objective-See Foundation
  Patrick Wardle is the founder of the Objective-See Foundation. Having worked at NASA and the NSA, as well as presented at countless security conferences, he is intimately familiar with aliens, spies, and talking nerdy. \n\n Patrick is passionate about all things related to macOS security and thus spends his days finding Apple 0days, analyzing macOS malware, and writing free open-source security tools to protect Mac users.

Links:

• https://objectivebythesea.org/v6/talks.html#Speaker_18
• https://www.youtube.com/watch?v=8uDvNxXywy4

Similar Presentations:

• Black Hat USA 2016 / DPTrace: Dual Purpose Trace for Exploitability Analysis of Program Crashes
• BSidesSF 2016 / APT Reports and OPSEC Evolution, or: These are not the APT reports you are looking for
• VB2016 / APT Reports and OPSEC Evolution, or: These Are Not the APT Reports You Are Looking For