Explore the attack surface of modern hypervisors from the perspective of system firmware and hardware emulation vulnerabilities in this Black Hat conference talk. Delve into new attacks on hypervisors based on system firmware vulnerabilities, with impacts ranging from VMM DoS to hypervisor privilege escalation to SMM privilege escalation from within virtual machines. Discover how a firmware rootkit could expose secrets within virtual machines and learn how firmware issues can be used for analysis of hypervisor-protected content. Gain insights into new modules in the open source CHIPSEC framework for testing hypervisor security issues when virtualizing hardware.
Overview
Syllabus
Attacking Hypervisors Using Firmware And Hardware
Taught by
Black Hat
Related Courses
-
Poacher Turned Gamekeeper - Lessons Learned from Eight Years of Breaking Hypervisors
-
Software Attacks on Hypervisor Emulation of Hardware
-
Remotely Attacking System Firmware
-
Breaking Hardware-Enforced Security With Hypervisors
-
Rootten Apples - Vulnerability Heaven in the iOS Sandbox
-
Scavenger - Misuse Error Handling Leading to Qemu - KVM Escape
