Related Issues (20)
- Investigate warnings appearing when rules are imported
- What if a file is created during dynamic analysis, and we don't have the metadata for the file from static analysis?
- run further tests to confirm that symlink attack works for afcd extension redirection and find similar situations.
- run further tests about sandbox extension reuse to resist revocation HOT 1
- query for directories getting chowned and see if we can chown a root directory to be owned by mobile HOT 1
- How did the attackers push files to the tmp directory after afcd set up a link to it?
- Further testing of iOS 9 exploit where third party app puts symlink in com.apple.itunes.lock_sync and then afcd makes link to this link. This bypasses restrictions that should stop afcd from making links to places out of Media/
- determine which jailbreaks could have been fixed with changes to the sandbox and explain why.
- We claim that a process has zero or more capabilities. Does a processes signature identity count as a capability? HOT 2
- Can we use strider (backtracer) to find parameters for functions other than sandbox initialization? Maybe we can find simple calls to chmod and chown. HOT 1
- We claim that no root process is sandboxed. Is this true? Make queries.
- Produce Small Step Semantics for Prolog Rule explanation. HOT 3
- Write Evaluation
- When debugserver launches neagent, does neagent use debugserver's sandbox?
- query to find sandbox profiles that allow a process to grant itself arbitrary sandbox extensions and access any file. quicklookd and afcd can do this.
- The ----; in ida doesn't necessarily mean there are 2 parent basic blocks.
- Should we just run backtracer on every function and for r0-r3? Then we could just query for the functions we care about.
- backtracer sometimes needs information about policies or context that could be provided by iOracle.
- Try using lsof or levin's lsof functionality in his procexp tool.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ioracle.