Completed
Attacker code
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
A UEFI Firmware Bootkit in the Wild
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 Definitions
- 3 Past examples
- 4 Prevalence
- 5 How it works
- 6 EFI driver
- 7 Attacker code
- 8 Modifying the boot manager
- 9 OSL Arc Transfer to Kernel
- 10 ZW Create section
- 11 Patch Guard
- 12 Shell Code Loader
- 13 User Mode Components
- 14 C2 Servers
- 15 Timeline
- 16 Possible attack scenario
- 17 Victims
- 18 Threat actors
- 19 How to disinfect
- 20 Conclusion