Attacking Hypervisors Using Firmware And Hardware

Channel:
United States All Hacking Cons
Subscribers:
5,970
Published on ● Video Link: https://www.youtube.com/watch?v=Q9sNjDtx5ww


Duration: 51:28
25 views
0

In this presentation, we explore the attack surface of modern hypervisors from the perspective of vulnerabilities in system firmware, such as BIOS and in hardware emulation. We will demonstrate a number of new attacks on hypervisors based on system firmware vulnerabilities with impacts ranging from VMM DoS to hypervisor privilege escalation to SMM privilege escalation from within the virtual machines.

We will also show how a firmware rootkit based on these vulnerabilities could expose secrets within virtual machines and explain how firmware issues can be used for analysis of hypervisor-protected content such as VMCS structures, EPT tables, host physical addresses (HPA) map, IOMMU page tables etc. To enable further hypervisor security testing, we will also be releasing new modules in the open source CHIPSEC framework to test issues in hypervisors when virtualizing hardware.

PRESENTED BY
Yuriy Bulygin, Alexander Matrosov, Mikhail Gorobets, Oleksandr Bazhaniuk

Black Hat - USA - 2015 Hacking conference
#hacking, #hackers, #infosec, #opsec, #IT, #security



Other Videos By All Hacking Cons


2022-01-03Repurposing OnionDuke A Single Case Study Around Reusing Nation State Malware
2022-01-03Assessing And Exploiting BigNum Vulnerabilities
2022-01-03Bypass Control Flow Guard Comprehensively
2022-01-03Dom Flow Untangling The DOM For More Easy Juicy Bugs
2022-01-03How Vulnerable Are We To Scams
2022-01-03Bypass Surgery Abusing Content Delivery Networks With Ser Side Request Forgery
2022-01-03Information Access And Information Sharing Where We Are And Where We Are Going
2022-01-03Attacking ECMAScript Engines With Redefinition
2022-01-03Certifi gate Front Door Access To Pwning Millions Of Androids
2022-01-03Emanate Like A Boss Generalized Covert Data Exfiltration With Funtenna
2022-01-03Attacking Hypervisors Using Firmware And Hardware
2022-01-03Cloning 3G4G SIM Cards With A PC And An Oscilloscope Lessons Learned
2022-01-03Internet Facing PLCs A New Back Orifice
2022-01-03Exploiting Out of Order Execution For Covert Cross VM Communication
2022-01-03Commercial Mobile Spyware Detecting The Undetectable
2022-01-03Internet Plumbing Gor Security Professionals The State Of BGP Security
2022-01-03Automated Human Vulnerability Scanning With AVA
2022-01-03Exploiting The DRAM Rowhammer Bug To Gain Kernel Privileges
2022-01-03CrackLord Maximizing Password Cracking Boxes
2022-01-03Internet Scale File Analysis
2022-01-03BGP Stream


Tags:
data
hacker
security
computer
cyber
internet
technology
hacking
attack
information
hack
online
password
code
web
concept
thief
protection
network
fraud
malware
secure
software
access
theft
system
firewall
communication
privacy
binary
spy
program
spyware
hacked
conference
learn
how to
2022
cybersecurity
owned
break in
google
securing
exploit
exploitation
recon
social engineering
Yuriy Bulygin
Alexander Matrosov
Mikhail Gorobets
Oleksandr Bazhaniuk
attacking
hypervisors
firmware