Targeting the iOS Kernel - Reverse Engineering Mac OS X
Targeting the iOS Kernel - Reverse Engineering Mac OS X
Targeting the iOS Kernel - Reverse Engineering Mac OS X
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>i<strong>OS</strong></strong> <strong>Kernel</strong>cache vs. IDA<br />
• IDA can load <strong>the</strong> <strong>i<strong>OS</strong></strong> kernelcache as an ARMv7 <strong>Mac</strong>h-O binary<br />
• however <strong>the</strong> autoanalysis will fail completely<br />
• large parts not analysed<br />
• code recognized as data and vice versa<br />
• functions not marked as functions<br />
• IDA clearly needs help<br />
Stefan Esser • <strong>Targeting</strong> <strong>the</strong> <strong>i<strong>OS</strong></strong> <strong>Kernel</strong> • April 2011 •<br />
17