YouTube

Got a YouTube account?

New: enable viewer-created translations and captions on your YouTube channel!

34C3 - Public FPGA based DMA Attacking

Get Embed Code
1 Language

https://media.ccc.de/v/34c3-9111-public_fpga_based_dma_attacking

Most thought Direct Memory Access (DMA) attacks were a thing of the past after CPU vendors introduced IOMMUs and OS vendors blocked Firewire DMA. At least until the PCILeech direct memory access attack toolkit was presented a year ago and quickly became popular amongst red teamers and governments alike.

A year later the situation has improved but some firmware and operating systems still remain vulnerable by default. The hardware used to perform the attacks was however limited both in capabilities and supply. FPGA support was introduced and made available to the public to overcome these problems. In this talk I will subvert kernels, defeat full disk encryption and spawn system shells - all by using affordable publically available FPGAs and open source software!

Ulf Frisk

https://fahrplan.events.ccc.de/congress/2017/Fahrplan/events/9111.html