Mach-O Disable ASLR/PIE

ASLR, Address Space Layout Randomization

Address space layout randomization (ASLR) is a computer security technique involved in protection from buffer overflow attacks. In order to prevent an attacker from reliably jumping to a particular exploited function in memory (for example), ASLR involves randomly arranging the positions of key data areas of a program, including the base of the executable and the positions of the stack, heap, and libraries, in a process’s address space.

From http://en.wikipedia.org/wiki/Address_space_layout_randomization

Mach-O

Mach-O, short for Mach object file format, is a file format for executables, object code, shared libraries, dynamically-loaded code, and core dumps. A replacement for the a.out format, Mach-O offered more extensibility and faster access to information in the symbol table.

Mach-O was once used by most systems based on the Mach kernel.[citation needed] NeXTSTEP, OS X, and iOS are examples of systems that have used this format for native executables, libraries and object code.

http://en.wikipedia.org/wiki/Mach-O

There are several tools turning ASLR/PIE off, some of those need to be compiled. So I decided to write one in Python. Repository: https://github.com/sskaje/disable_aslr

Disable ASLR on jailbroken iPod Touch 4 with python installed from Cydia
Disable ASLR

Disable ASLR on OS X for iOS App
Disable ASLR on OS X for iOS App

https://developer.apple.com/library/mac/documentation/DeveloperTools/Conceptual/MachORuntime/Reference/reference.html

Mach-O Disable ASLR/PIE by @sskaje: https://sskaje.me/2014/05/mach-o-disable-aslr-pie/

Incoming search terms:

Duplicated: For those who cannot use lsof on a jailbroken iDevice

From Apple signed fake device attributes?

If you find the lsof not working with a message like ‘lsof: PID 3206 information error: Cannot allocate memory’, then you may need http://pupil.io8.org/pub/iphone/misc/lsof/lsof-arm7-iOS4.2 from http://modmyi.com/forums/native-iphone-ipod-touch-app-discussion/721184-lsof-problem.html. Then chmod +x lsof-arm7-iOS4.2

Tested under iOS 6.1.3 on iPod Touch 4.

Duplicated: For those who cannot use lsof on a jailbroken iDevice by @sskaje: https://sskaje.me/2013/10/duplicated-for-those-who-cannot-use-lsof-on-a-jailbroken-idevice/

Incoming search terms:

Apple signed fake device attributes?

You are not authorised to read all content in this post.

Please login…

Apple signed fake device attributes? by @sskaje: https://sskaje.me/2013/10/apple-signed-fake-device-attributes/