A Dirty Little History - Bypassing Spectre Hardware Defenses to Leak Kernel Data
Offered By: Black Hat via YouTube
Course Description
Overview
Explore a 33-minute Black Hat conference talk that delves into the evolution of Spectre attacks and their ability to bypass hardware defenses. Learn about Branch Target Injection (BTI) and how it exploits misprediction in indirect branches to execute attacker-controlled instructions. Discover the researchers' findings on bypassing Spectre mitigations in modern CPUs, including their reverse engineering efforts and the discovery of a new Spectre variant. Gain insights into the practical implications through a live demonstration and understand the vendor responses to these vulnerabilities. Suitable for cybersecurity professionals and those interested in advanced hardware security topics.
Syllabus
Introduction
Project Overview
Spectrum
Indirect Branch
Branch History Injection
Reverse Engineering
Recap
Cisco Table Handler
Finding a Spectre Gadget
Spectra Variant 2
Live Demo
Vendor Response
Conclusion
Taught by
Black Hat
Related Courses
Hardware SecurityUniversity of Maryland, College Park via Coursera Information Security- II
Indian Institute of Technology Madras via Swayam Ethical Hacking
Indian Institute of Technology, Kharagpur via Swayam Cybersecurity
University of Maryland, College Park via Coursera Learning Mobile Device Security
LinkedIn Learning