{"guid":"55f921ed-ab90-4553-9903-8658557ac447","title":"iOS kernel exploitation archaeology","subtitle":null,"slug":"34c3-8720-ios_kernel_exploitation_archaeology","link":"https://fahrplan.events.ccc.de/congress/2017/Fahrplan/events/8720.html","description":"This talk presents the technical details and the process of reverse engineering and re-implementation of the evasi0n7 jailbreak's main kernel exploit. This work was done in late 2013, early 2014 (hence the \"archaeology\" in the title), however, it will provide insight into the kernel debugging setup for iOS devices (iDevices), the encountered difficulties and how they were overcome, all of which can be useful for current iOS kernel vulnerability research.","original_language":"eng","persons":["argp"],"tags":["34c3","8720","Security"],"view_count":2666,"promoted":false,"date":"2017-12-27T00:00:00.000+01:00","release_date":"2017-12-28T01:00:00.000+01:00","updated_at":"2026-04-03T00:30:06.219+02:00","length":3296,"duration":3296,"thumb_url":"https://static.media.ccc.de/media/congress/2017/8720-hd.jpg","poster_url":"https://static.media.ccc.de/media/congress/2017/8720-hd_preview.jpg","timeline_url":"https://static.media.ccc.de/media/congress/2017/55f921ed-ab90-4553-9903-8658557ac447-timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/congress/2017/55f921ed-ab90-4553-9903-8658557ac447-thumbnails.vtt","frontend_link":"https://media.ccc.de/v/34c3-8720-ios_kernel_exploitation_archaeology","url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_title":"34C3: TUWAT","conference_url":"https://api.media.ccc.de/public/conferences/34c3","related":[{"event_id":4762,"event_guid":"b036385c-ec1a-44e5-ae48-af703ce9b5d3","weight":9},{"event_id":4766,"event_guid":"19b7e5d7-bba7-46da-afbc-f16d43fe395f","weight":61},{"event_id":4784,"event_guid":"65a25dfd-56dd-4e87-a910-334e2dc25a9c","weight":71},{"event_id":4785,"event_guid":"4c4af291-e9ed-4dc9-8b2e-9062db9924fa","weight":80},{"event_id":4790,"event_guid":"edd02e52-28f8-4f3e-8b17-75cffecb6d7f","weight":58},{"event_id":4794,"event_guid":"a2887b4a-0c9d-4220-a52f-c65c20ae25d7","weight":62},{"event_id":4795,"event_guid":"722ce759-9cde-4e3b-8db5-5a97aa9673d9","weight":52},{"event_id":4796,"event_guid":"ff24373e-ebe2-4077-9db0-eae5ab003538","weight":57},{"event_id":4810,"event_guid":"c1acc5c2-58b2-4ed5-a504-351b8b93c171","weight":19},{"event_id":4817,"event_guid":"be19fbe3-e825-4e67-93f9-a6aeda2e31af","weight":73},{"event_id":4826,"event_guid":"16645200-2036-4a3c-a44d-a5ff44ac2991","weight":88},{"event_id":4830,"event_guid":"5cf8c222-47d3-4741-9324-be182b4d0fb8","weight":79},{"event_id":4832,"event_guid":"275f85de-d612-4440-8755-85dee5912f12","weight":61},{"event_id":4833,"event_guid":"e1a60f7b-6a56-4dce-ab3a-c686fa940aa8","weight":86},{"event_id":4842,"event_guid":"581ccbad-4bbf-47a2-8845-f52278d61061","weight":58},{"event_id":4855,"event_guid":"51b586be-500c-436e-b70c-fc433e65c4be","weight":62},{"event_id":4909,"event_guid":"03ba9edb-1d3a-4774-9384-7548c0696df7","weight":50}],"recordings":[{"size":null,"length":null,"mime_type":"application/x-subrip","language":"eng","filename":"34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology.en.srt","state":"complete","folder":"","high_quality":true,"width":null,"height":null,"updated_at":"2021-02-21T19:46:40.955+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology.en.srt","url":"https://api.media.ccc.de/public/recordings/45381","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":201,"length":3296,"mime_type":"video/mp4","language":"eng","filename":"34c3-8720-eng-iOS_kernel_exploitation_archaeology.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2017-12-28T17:03:39.193+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/h264-hd/34c3-8720-eng-iOS_kernel_exploitation_archaeology.mp4","url":"https://api.media.ccc.de/public/recordings/21040","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":201,"length":3296,"mime_type":"video/mp4","language":"deu","filename":"34c3-8720-deu-iOS_kernel_exploitation_archaeology.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2017-12-28T17:03:54.685+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/h264-hd/34c3-8720-deu-iOS_kernel_exploitation_archaeology.mp4","url":"https://api.media.ccc.de/public/recordings/21041","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":322,"length":3296,"mime_type":"video/mp4","language":"eng-deu","filename":"34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2017-12-28T17:04:08.175+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/h264-hd/34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_hd.mp4","url":"https://api.media.ccc.de/public/recordings/21042","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":176,"length":3296,"mime_type":"video/mp4","language":"eng-deu","filename":"34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_hd-slides.mp4","state":"new","folder":"slides-h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2017-12-28T17:52:38.597+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/slides-h264-hd/34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_hd-slides.mp4","url":"https://api.media.ccc.de/public/recordings/21091","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":160,"length":3296,"mime_type":"video/mp4","language":"eng-deu","filename":"34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2017-12-28T17:54:52.033+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/h264-sd/34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_sd.mp4","url":"https://api.media.ccc.de/public/recordings/21095","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":288,"length":3296,"mime_type":"video/webm","language":"eng-deu","filename":"34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2017-12-28T18:09:23.478+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/webm-sd/34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/21112","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":50,"length":3281,"mime_type":"audio/mpeg","language":"eng","filename":"34c3-8720-eng-iOS_kernel_exploitation_archaeology.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2017-12-28T20:15:39.865+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/mp3/34c3-8720-eng-iOS_kernel_exploitation_archaeology.mp3","url":"https://api.media.ccc.de/public/recordings/21133","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":38,"length":3281,"mime_type":"audio/opus","language":"eng","filename":"34c3-8720-eng-iOS_kernel_exploitation_archaeology.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2017-12-28T20:16:37.754+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/opus/34c3-8720-eng-iOS_kernel_exploitation_archaeology.opus","url":"https://api.media.ccc.de/public/recordings/21134","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":459,"length":3296,"mime_type":"video/webm","language":"eng-deu","filename":"34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2017-12-28T21:38:08.147+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/webm-hd/34c3-8720-eng-deu-iOS_kernel_exploitation_archaeology_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/21243","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"},{"size":66,"length":3296,"mime_type":"video/mp4","language":"eng","filename":"34c3-8720-eng-iOS_kernel_exploitation_archaeology_sd-slides.mp4","state":"new","folder":"slides-h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2018-01-02T15:25:50.884+01:00","recording_url":"https://cdn.media.ccc.de/congress/2017/slides-h264-sd/34c3-8720-eng-iOS_kernel_exploitation_archaeology_sd-slides.mp4","url":"https://api.media.ccc.de/public/recordings/22268","event_url":"https://api.media.ccc.de/public/events/55f921ed-ab90-4553-9903-8658557ac447","conference_url":"https://api.media.ccc.de/public/conferences/34c3"}]}