Upload File

douglas mckee mark bereza - def con con 27/def con 27... · 2019-09-30 · what do we have?...

  • Home
  • Documents
  • Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
98
Douglas McKee Mark Bereza

Upload: others

Post on 25-Apr-2020

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Douglas McKeeMark Bereza

Page 2: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

••••

••••

Page 3: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

••

Page 4: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 5: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 6: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 7: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 8: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 9: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 10: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 11: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 12: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 13: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 14: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 15: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 16: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 17: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 18: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 19: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 20: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 21: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 22: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 23: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

DEBUG THIS,

NERD

Page 24: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Watchdog error message

Page 25: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 26: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 27: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Binary Patch

Page 28: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 29: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 30: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 31: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 32: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 33: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 34: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 35: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 36: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 37: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 38: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 39: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 40: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 41: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 42: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 43: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

What do we have?

• Execution control via GOT override

• Netcat installed by def

• Memory on heap

What do we want?

• Persistence• Root access

How do we get it (easily)?

• Put shellcode in memory we control

• Fire off reverse shell by calling system()

Page 44: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

What do we have?

• Execution control via GOT overwrite

• Netcat installed by default

• Memory on heap

What do we want?

• Persistence• Root access

How do we get it (easily)?

• Put shellcode in memory we control

• Fire off reverse shell by calling system()

Page 45: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

What do we have?

• Execution control via GOT overwrite

• Netcat installed by default

• Memory on heap

What do we want?

• Persistence• Root access

How do we get it (easily)?

• Put shellcode in memory we control

• Fire off reverse shell by calling system()

Page 46: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

What do we have?

• Execution control via GOT overwrite

• Netcat installed by default

• Memory on heap

What do we want?

• Root access• Persistence

How do we get it (easily)?

• Put shellcode in memory we control

• Fire off reverse shell by calling system()

Page 47: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

What do we have?

• Execution control via GOT overwrite

• Netcat installed by default

• Memory on heap

What do we want?

• Root access• Persistence

How do we get it (easily)?

• Put shellcode in memory we control

• Fire off reverse shell by calling system()

Page 48: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

What do we have?

• Execution control via GOT overwrite

• Netcat installed by default

• Memory on heap

What do we want?

• Root access• Persistence

How do we get it (easily)?

• Put shellcode in memory we control

• Fire off reverse shell by calling system()

Page 49: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 50: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 51: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 52: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 53: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 54: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 55: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 56: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 57: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 58: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

R4 + offset gets us close to system() address

Page 59: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 60: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 61: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 62: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 63: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 64: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 65: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Hit when relay turns on

Call to ioctl() flips relay

Page 66: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 67: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 68: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 69: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 70: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Inserted into startup script using our exploit

Page 71: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

1. Delta programming executes

Page 72: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

2. Dynamic linker loads objects in the following order:

1. Delta programming executes

Page 73: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

2. Dynamic linker loads objects in the following order:

3. I/O polling thread calls canioWriteOutput to flip a relay

1. Delta programming executes

Page 74: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

1. Delta programming executes

Page 75: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

2. Dynamic linker loads objects in the following order:

1. Delta programming executes

Page 76: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

2. Dynamic linker loads objects in the following order:

3. I/O polling thread calls canioWriteOutput to flip a relay

1. Delta programming executes

Page 77: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

2. Dynamic linker loads objects in the following order:

3. I/O polling thread calls canioWriteOutput to flip a relay

1. Delta programming executes

Page 78: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 79: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 80: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 81: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Device ID: 0x0836004B

Device state: 75.1038

Device description: “Room Temp”

Page 82: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 83: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 84: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 85: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 86: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 87: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 88: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 89: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 90: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 91: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 92: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 93: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 94: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 95: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap
Page 96: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

••

••

Page 97: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Page 98: Douglas McKee Mark Bereza - DEF CON CON 27/DEF CON 27... · 2019-09-30 · What do we have? •Execution control via GOT overwrite •Netcat installed by default •Memory on heap

Diálogos con medrano def

Kartograph - DEF CON

Crypto for Hackers - DEF CON CON 23/DEF CON 23 presentations/DEF CON 23... · Crypto for Hackers Eijah v1.00 August 7th, 2015 “Shall we play a game?

Introduction to x86 disassembly - DEF CON CON 24/DEF CON 24 workshops/DEF CON 24... · x86 •Today, “x86” generally refers to all architectures based off of the original 8086

How to secure the keyboard chain - DEF CON CON 23/DEF CON 23 presentations/DEF… · How to secure the keyboard chain DEF CON 23 Paul Amicelli - Baptiste David - CVO Esiea-Ouest c

SCADA - DEF CON

DEF CON 24 Hacking Conference CON 24/DEF CON 24 presentations/DEF CON 24...RDS-1 or "Stalin's Jet Engine" Inside knowledge of the Manhattan Project combined with looting Germany's

DEF CON 26 HACKING CONFERENCE CON 26/DEF CON 26 receipt.pdf · Title: DEF CON 26 HACKING CONFERENCE Author: DEF CON 26 Subject: DEF CON 26 RECEIPT Keywords: DEF CON Conference, DEF

DEF CON 26 Hacking Conference CON 26/DEF CON 26...Find us on Twitter: @michaelossmann / @dominicgs Title DEF CON 26 Hacking Conference Author DEF CON Speaker Subject DEF CON 26 Presentation

Infrared - Def Con

DEF CON 23 Presentation

GUIDA CMAP_lavoro Def Con Filigrana

Network Protocol Reverse Engineering - DEF CON CON 24/DEF CON 24 presentations/DEF… · Network Protocol Reverse Engineering ... Linux, Mac •Scapy –Python based, extensible •Fuzzing

Keren Elazari aka @K3r3n3 - DEF CON Media Server CON 22/DEF CON 22...Empowering Hackers to Create a Positive Impact, Keren Elazari, DEFCON, DEF CON, Hacker, Security Conference, Presentations,

HACKING HOTEL KEYS - DEF CON CON 24/DEF CON 24 presentations/DEF… · HACKING HOTEL KEYS Security Consultant ... Researcher. 9About 11 years pen-testing, Security Research, ... 912

DEF CON 23 Presentation CON 23/DEF CON 23 presentations/DEF CON 23... · GPS SPOOFING Low-cost GPS simulator HUANG Lin, YANG Qing Unicorn Team – Radio and Hardware Security Research

Download - Def Con

WEAPONIZING THE BBC MICRO:BIT - DEF CON CON 25/DEF CON 25 presentations/DEFCON...WEAPONIZING THE BBC MICRO:BIT ... Python code size is limited, ... DEF CON Conference, DEF CON, DEFCON,

WPA TOO ! - DEF CON

Bypass firewalls, application white ... - media.defcon.org CON 22/DEF CON 22 presentations... · DEF CON 22, 2014. Hungary. root@ ... ... DEFCON, DEF CON, Hacker, Security Conference,

You’re Just Complaining Because You’re Guilty CON/DEF CON 26/DEF CON 26...You’re Just Complaining Because You’re Guilty: A DEF CON Guide to Adversarial Testing of Software

Teaching Old Shellcode New Tricks - DEF CON CON 25/DEF CON 25 presentations/DE… · Teaching Old Shellcode New Tricks DEF CON 2017 @midnite_runr

DEF CON 26 Hacking Conference - DEF CON Media Server CON 26/DEF CON 26 presentations/DEF… · started in late 2017 to prepare for the 2018 CCDC season. We ended up using the BETA

Starting the Avalanche - DEF CON CON 25/DEF CON 25 presentations/DEF… · Starting the Avalanche: Application DoS ... DEFCON, Speeches, Hacking, Hackers, Hacker Conference, Computer

DEF CON 25 Hacker Conference - DefCon Media Server CON 25/DEF CON 25 presentations/DEF… · functionality = self.checklist["Functionality"] ... Manually add ancillary data (pentest/other

DEF CON 26 Hacking Conference - infocon.org CON/DEF CON 26/DEF CON... · Bryce Kunz - Stage 2 Security, Red Teaming & Splunk Security Services. CNO.io Kevin Lustic & Bryce Kunz (@TweekFawkes)

Aaron Bayles DC101 @ DEF CON 22 - DEF CON® Hacking Conference · Aaron Bayles DC101 @ DEF CON 22 ... //media.blackhat.com/us ... Lockpicking, Hackers, Infosec, Hardware Hacking,

DEF CON 26 Voting Village - DEF CON® Hacking Conference CON 26 voting... · 2018-09-27 · DEF CON 26 Voting Village Report on Cyber Vulnerabilities in U.S. Election Equipment, Databases,

Secure Tokin’ & Doobiekeys - DEF CON CON 25/DEF CON 25... · 2020. 5. 16. · Insecure Boot Spliff Trusted Platform Module Doobiekey Altered State. Title: Untitled Author: DEF CON

Your Bank’s Digital Side Door - DEF CON CON 26/DEF CON 26 presentations/DEF… · Quicken/Quickbooks Connection Types Web Connect •Unidirectional •Manual •Download a file

Hacking MANET - Def Con

Cracking Cryptocurrency Brainwallets - DEF CON CON 23/DEF CON 23 presentations/DEF… · Cracking Cryptocurrency Brainwallets Ryan Castellucci ... pass a file with pubkeyhashs,

DEF CON 24 Hacking Conference - Ruxcon · Title: DEF CON 24 Hacking Conference Author: DEF CON 24 Speaker Keywords

Building AppSec Automation with python - DEF CON CON 25/DEF CON 25... · Building AppSec Automation with python ... Con!guring ZAP to run with Python ... DEF CON, DEFCON, Speeches,

DEF CON 24 Hacking Conference CON 24/DEF CON 24 presentations/DEF… · •Dummy frame injection •Delaying acknowledgments ECU CAN High CAN Low ... #wireshark -X lua_script:ethcan.lua