Security | DMA | Hacking
Tuesday, March 27, 2018
Did you think Meltdown was bad? Unprivileged applications being able to read kernel memory at speeds possibly as high as megabytes per seco...
Monday, March 12, 2018
Introducing the Memory Process File System for PCILeech
The Memory Process File System for PCILeech is an easy and convenient way to quickly look into memory dumps. The processes in a memory dum...
Wednesday, August 30, 2017
Unlike macs many PCs are likely to be vulnerable to pre-boot Direct Memory Access (DMA) attacks against UEFI. If an attack is successful on...
Wednesday, January 11, 2017
Attacking UEFI Runtime Services and Linux
Attackers with physical access are able to attack the firmware on many fully patched computers with DMA - Direct Memory Access. Once code ex...
Thursday, December 15, 2016
macOS FileVault2 Password Retrieval
macOS FileVault2 let attackers with physical access retrieve the password in clear text by plugging in a $300 Thunderbolt device into a lock...
Wednesday, November 23, 2016
Windows 10 KASLR Recovery with TSX
It is possible to break Kernel Address Space Layout Randomization (KASLR) on modern operating systems running on modern x86 CPU's. O...
Monday, November 14, 2016
Disable Virtualization Based Security (VBS) on auto-booting systems
I this post I will show how it's possible to disable Windows 10 Virtualization Based Security (VBS), Credential and Device Guard, by co...
View web version