YoVDO

A Dirty Little History - Bypassing Spectre Hardware Defenses to Leak Kernel Data

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses Reverse Engineering Courses Hardware Security Courses Vulnerability Research Courses

Course Description

Overview

Explore a 33-minute Black Hat conference talk that delves into the evolution of Spectre attacks and their ability to bypass hardware defenses. Learn about Branch Target Injection (BTI) and how it exploits misprediction in indirect branches to execute attacker-controlled instructions. Discover the researchers' findings on bypassing Spectre mitigations in modern CPUs, including their reverse engineering efforts and the discovery of a new Spectre variant. Gain insights into the practical implications through a live demonstration and understand the vendor responses to these vulnerabilities. Suitable for cybersecurity professionals and those interested in advanced hardware security topics.

Syllabus

Introduction
Project Overview
Spectrum
Indirect Branch
Branch History Injection
Reverse Engineering
Recap
Cisco Table Handler
Finding a Spectre Gadget
Spectra Variant 2
Live Demo
Vendor Response
Conclusion


Taught by

Black Hat

Related Courses

Hardware Security
University of Maryland, College Park via Coursera Information Security- II
Indian Institute of Technology Madras via Swayam Ethical Hacking
Indian Institute of Technology, Kharagpur via Swayam Cybersecurity
University of Maryland, College Park via Coursera Learning Mobile Device Security
LinkedIn Learning