Jump to content
Nytro

Technical Analysis of Pegasus Spyware

By Nytro, in Reverse engineering & exploit development

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

Technical Analysis of Pegasus Spyware

An Investigation Into Highly Sophisticated Espionage Software

  

Contents
Executive Summary
Background
Disclosure Timeline
Attack Overview
Professional Grade Development
Evolution of Software
The Trident Vulnerabilities
CVE-2016-4655: Memory Corruption in Safari Webkit
CVE-2016-4656: Kernel Information Leak Circumvents KASLR
CVE-2016-4657: Memory Corruption in Kernel leads to Jailbreak
Jailbreak Persistence
Spyware Analysis
Installation and Persistence
Persistence: JSC Privilege Escalation
Disabling Updates
Jailbreak Detection
Device Monitoring
Stealth Update to Command & Control Infrastructure
Self Destruction
Data Gathering
Calendar
Contacts
GPS location
Capturing User Passwords
WiFi and Router Passwords
Interception of Calls and Messages
Process Injection: converter
Skype
Telegram
WhatsApp
Viber
Real-Time Espionage
Conclusion

Download: https://info.lookout.com/rs/051-ESQ-475/images/lookout-pegasus-technical-analysis.pdf

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...