Attacking Hypervisors Using Firmware And Hardware
by Yuriy Bulygin & Alexander Matrosov & Mikhail Gorobets & Oleksandr Bazhaniuk
In this presentation, we explore the attack surface of modern hypervisors from the perspective of vulnerabilities in system firmware, such as BIOS and in hardware emulation. We will demonstrate a number of new attacks on hypervisors based on system firmware vulnerabilities with impacts ranging from VMM DoS to hypervisor privilege escalation to SMM privilege escalation from within the virtual machines.
We will also show how a firmware rootkit based on these vulnerabilities could expose secrets within virtual machines and explain how firmware issues can be used for analysis of hypervisor-protected content such as VMCS structures, EPT tables, host physical addresses (HPA) map, IOMMU page tables etc. To enable further hypervisor security testing, we will also be releasing new modules in the open source CHIPSEC framework to test issues in hypervisors when virtualizing hardware.
Видео Attacking Hypervisors Using Firmware And Hardware канала Black Hat
In this presentation, we explore the attack surface of modern hypervisors from the perspective of vulnerabilities in system firmware, such as BIOS and in hardware emulation. We will demonstrate a number of new attacks on hypervisors based on system firmware vulnerabilities with impacts ranging from VMM DoS to hypervisor privilege escalation to SMM privilege escalation from within the virtual machines.
We will also show how a firmware rootkit based on these vulnerabilities could expose secrets within virtual machines and explain how firmware issues can be used for analysis of hypervisor-protected content such as VMCS structures, EPT tables, host physical addresses (HPA) map, IOMMU page tables etc. To enable further hypervisor security testing, we will also be releasing new modules in the open source CHIPSEC framework to test issues in hypervisors when virtualizing hardware.
Видео Attacking Hypervisors Using Firmware And Hardware канала Black Hat
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
What is a Hypervisor?
![[Disobey 2020] Live Memory Attacks and Forensics - Ulf Frisk](https://i.ytimg.com/vi/mca3rLsHuTA/default.jpg)
[Disobey 2020] Live Memory Attacks and Forensics - Ulf Frisk
An evening with Gordon Ramsay at Michelin-starred Petrus
Whiteboard Wednesday: Extracting Firmware from Microcontrollers
Heap Spray Exploit Technique
How to Make Your Own VPN (And Why You Would Want to)
What Makes ALL Your Electronics Work - Firmware Explained
PicoDMA: DMA Attacks at Your Fingertips
How To Remove Crypto Miner ~ Advanced Rootkit Removal | How To Remove Rootkits ~ Nico Knows Tech
BIOS, CMOS, UEFI - What's the difference?
Demo8 - Heap Spray Example
Cloud Security Attack - Fancy Hare
The Heap: How to exploit a Heap Overflow - bin 0x15
48 Dirty Little Secrets Cryptographers Don’t Want You To Know
Vulnerability research as a lifestyle - Faraz
What is a Hypervisor?
Virtualization Technologies How a Hypervisor works
Hypervisor technology: A foundation for critical automotive embedded systems
OffensiveCon19 - Alex Matrosov - Attacking Hardware Root of Trust from UEFI Firmware