Fuzzing the Phone in your Phone
- Type
- Video
- Tags
- fuzzing, phone
- Authors
- Collin Mulliner
- Event
- Chaos Communication Congress 26th (26C3) 2009
- Indexed on
- Mar 25, 2013
- URL
- http://mirror.fem-net.de/CCC/26C3/mp4/26c3-3507-de-fuzzing_the_phone_in_your_phone.mp4
- File name
- 26c3-3507-de-fuzzing_the_phone_in_your_phone.mp4
- File size
- 455.5 MB
- MD5
- ea48f3e3f686bc0d378a0ba80b5c40a2
- SHA1
- e8e6070f78e30101eaeefb157dd4a6cb07e0d232
In this talk we show how to find vulnerabilities in smart phones. Not in the browser or mail client or any software you could find on a desktop, but rather in the phone specific software. We present techniques which allow a researcher to inject SMS messages into iPhone, Android, and Windows Mobile devices. This method does not use the carrier and so is free (and invisible to the carrier). We show how to use the Sulley fuzzing framework to generate fuzzed SMS messages for the smart phones as well as ways to monitor the software under stress. Finally, we present the results of this fuzzing and discuss their impact on smart phones and cellular security.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
