Explore the intricacies of iOS and macOS networking code vulnerabilities in this 50-minute conference talk from the Hack In The Box Security Conference. Delve into the complexities of networking protocols and their impact on code security. Learn about the discovery of multiple remote code execution vulnerabilities in Apple's XNU operating system kernel, specifically related to mbuf processing. Gain insights into network packet structures, the mbuf datatype, and how XNU processes them. Examine corner cases that led to vulnerabilities and understand the custom variant analysis technique using Semmle QL for bug discovery. Discover C programming techniques used to implement proof-of-concept exploits, complete with kernel-crashing demonstrations. Cover topics such as TCP/IP packet structure, TCP options, raw socket programming, stack buffer overflow, and NFS mount vulnerabilities. Acquire knowledge about security research methodologies, including the use of Query Language (QL) for finding and analyzing potential vulnerabilities in complex networking code. Read more