YoVDO

A Dirty Little History - Bypassing Spectre Hardware Defenses to Leak Kernel Data

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses Reverse Engineering Courses Hardware Security Courses Vulnerability Research Courses

Course Description

Overview

Explore a 33-minute Black Hat conference talk that delves into the evolution of Spectre attacks and their ability to bypass hardware defenses. Learn about Branch Target Injection (BTI) and how it exploits misprediction in indirect branches to execute attacker-controlled instructions. Discover the researchers' findings on bypassing Spectre mitigations in modern CPUs, including their reverse engineering efforts and the discovery of a new Spectre variant. Gain insights into the practical implications through a live demonstration and understand the vendor responses to these vulnerabilities. Suitable for cybersecurity professionals and those interested in advanced hardware security topics.

Syllabus

Introduction
Project Overview
Spectrum
Indirect Branch
Branch History Injection
Reverse Engineering
Recap
Cisco Table Handler
Finding a Spectre Gadget
Spectra Variant 2
Live Demo
Vendor Response
Conclusion


Taught by

Black Hat

Related Courses

Systems & Network Security
Chaffey College via California Community Colleges System Physical and Advanced Side-Channel Attacks
Graz University of Technology via edX Developing Secure IoT Applications
EDUCBA via Coursera Essential Aspects of Software, Hardware, and Data Backup
Microsoft via Coursera Cybersecurity
University of Maryland, College Park via Coursera