Presentation on “interesting” features of the Intel x86[_64] platform (as given at 44CON 2017).
A lot of recent work has gone into the discovery, analysis, and (on occasion) marketing of hardware weaknesses in the Intel x86[_64] platform particularly with respect to how it is often implemented as part of specific motherboard designs. Some, such as the recent speculative execution borne attacks, are issues in the architecture itself. Other issues, however, affect individual implementations. This talk will take a wide-coverage “state of play” look at x86[_64] platform security covering:
- Architectural failings in hardware design
- Identifying security issues with modern computer hardware (treat it just like IoT devices!)
- Attempts at restoring privacy, ownership, and security
- Code and data persistence
- How secure hardware can be re-used
Presentation on how Windows kernel drivers work and where to look for vulnerabilities (as given at 44CON 2015). Continue reading
Graham recently gave a presentation at 44CON’s community night entitled “GET IN THE RING0″ on the subject of Windows kernel drivers. Continue reading
Presentation on system level vulnerabilities (as given at BT’s SnoopCon 2014). Continue reading
Rather than representing a definitive guide, this document represents a review of the specific security issues identified during Portcullis Computer Security Ltd’s recent research into System V shared memory segments and their usage. Continue reading
smaSHeM is a System V shared memory segment manipulator. Continue reading
Presentation on system level vulnerabilities (as given at 44CON 2013). Continue reading
UNIXSocketScanner is a UNIX domain socket scanner. Continue reading
Presentation on auditing and bug hunting on AIX (as given at 44CON 2012). Continue reading