Antid0te 2.0 - ASLR in iOS - Reverse Engineering Mac OS X
Antid0te 2.0 - ASLR in iOS - Reverse Engineering Mac OS X
Antid0te 2.0 - ASLR in iOS - Reverse Engineering Mac OS X
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Changes <strong>in</strong> Memory Page Handl<strong>in</strong>g<br />
• slid<strong>in</strong>g whole cache is too slow<br />
• Apple changed page handler to<br />
relocate each page on access<br />
• works on the kernel buffer filled<br />
by syscall 437<br />
• made decrypt<strong>in</strong>g the new<br />
dyld_shared_cache file format easy<br />
Stefan Esser • <strong>Antid0te</strong> <strong>2.0</strong> - <strong>ASLR</strong> <strong>in</strong> <strong>i<strong>OS</strong></strong> • May 2011 •<br />
42