Overview
Explore recent changes in UEFI firmware security runtime using a cutting-edge Intel CPU as an example in this 36-minute Black Hat conference talk. Delve into the evolution of firmware mitigations in SMM/DXE on x86-based CPUs and examine new attacks on Intel Platform Properties Assessment Module (PPAM), often used alongside Intel SMI Transfer Monitor (STM). Gain exclusive insights into these topics from an offensive security research perspective, never before publicly discussed. Learn from experts Alex Ermolov, Alex Matrosov, Sam Thomas, and Yegor Vasilenko as they share their work on exploiting early boot phases and breaking firmware trust from pre-EFI.
Syllabus
Breaking Firmware Trust From Pre-EFI: Exploiting Early Boot Phases
Taught by
Black Hat