Και ο Οκτώβριος είναι μακριά..
In this presentation I plan to do exactly that. We will be breaking down the inner-workings of the iOS BootROM and show how previous vulnerabilities were discovered and exploited. First we will cover how the BootROM has been dumped from iOS devices in the past. Next we’ll have a brief walk through on how the BootROM works and the different execution paths it can take. Then we will take a detail look into the previous iOS BootROM exploits, including how they were discovered, analyzed, different ideas used to attempt exploitation, and how they were eventually exploited to create the permanent exploits used in most Jailbreaking software today. Finally we’ll get into some theoretical situations and discuss how different types of vulnerabilities (if discovered) could be exploited on the device to create a unpatchable jailbreak.
This presentation will be told from a first person point of view from a person who was actually there to witness it all unfold, with first-hand experience in the subject. Finally the untold story of iOS BootROM exploitation (which has always gone on behind closed doors) will be told to the world.