Checking BIOS Protections Offline With Just the Firmware Updates
44CON Information Security Conference via YouTube
Overview
Explore system firmware vulnerabilities and their impact on cybersecurity in this 44-minute conference talk from 44CON 2017. Discover how adversaries can exploit BIOS weaknesses to bypass operating system protections, Secure Boot, and even virtualization-based security. Learn about the open-source framework developed to automate vulnerability analysis and the findings from examining thousands of UEFI firmware updates across multiple vendors. Gain insights into the process, limitations, and implications of offline firmware analysis, highlighting the critical need for robust BIOS/UEFI protections in modern systems.
Syllabus
Checking BIOS protections offline with just the firmware updates - Yuriy Bulygin at 44CON 2017
Taught by
44CON Information Security Conference