Looks like my USENIX talk is now available! https://www.youtube.com/watch?v=sm_yKwCAzlw

In the talk, I present the basics of video compression via prediction, and showcase how H26Forge can be used to generate H.264 videos with unusual prediction instructions. I then walk through CVE-2022-42846, a DoS in AppleD5500.kext caused by a type error.

Slides: https://github.com/wrv/wrv.github.io/tree/master/presentations/usenix23/

Paper: https://wrv.github.io/h26forge.pdf

H26Forge: https://github.com/h26forge/h26forge

REcon talk is out! https://www.youtube.com/watch?v=ia1zDlwWRWU

In the talk, I introduce the complexities of working with H.264, show how H26Forge helps us tackle the complexity, and demonstrate how to use H26Forge to generate a PoC video for CVE-2022-22675, a previous in-the-wild AppleAVD 0-day.

Slides: https://github.com/wrv/wrv.github.io/tree/master/presentations/recon23

H26Forge: https://github.com/h26forge/h26forge

Paper: https://wrv.github.io/h26forge.pdf

We’re excited to announce that H26Forge is now available at https://github.com/h26forge/h26forge ! We used H26Forge to find video decoding bugs in the iOS Kernel, Firefox, FFmpeg, and hardware decoders, all by generating syntactically-correct, but spec non-compliant H.264 videos. This is joint work with @stevecheckoway and @hovav , and will appear at USENIX Security and Black Hat! (REcon vid coming soon!)

To begin generating videos, you can just build the code, or download a release, and run `./scripts/gen_100_videos.sh`

🧵 (1/3)