YoVDO

Fully Arbitrary 802.3 Packet Injection - Maximizing the Ethernet Attack Surface

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Network Security Courses Embedded Systems Courses Network Analysis Courses Hardware Security Courses

Course Description

Overview

Explore advanced Ethernet packet injection techniques in this Black Hat USA 2013 conference talk. Delve into the intricacies of Fast Ethernet layers 1 and 2, uncovering novel attack methods using affordable hardware with custom firmware. Learn how to craft fully arbitrary packets, manipulate Frame Check Sequence (FCS) and Start-of-Frame delimiter (SFD), and perform Ethernet Packet-In-Packet injection. Discover the implications for testing and analyzing networked embedded systems in automation, automotive, and avionics industries. Examine specific frame manipulations triggering SFD parsing anomalies and their security relevance. Witness the first public demonstration of remote Ethernet Packet-In-Packet injection and gain insights into expanding the Ethernet attack surface.

Syllabus

Introduction
Presentation Overview
What are we talking about
Signaling Data
Signaling Codes
Frame Delimiter
Motivation
Received invalid packets and frames
Patching the kernel
Example
Hardware
Custom Injector Framework
Fingerprinting
Escaping Passing Network Table
Packet Analysis
Demonstration
Presentation
Packet Injection
Packet Injection Example
Demo
Live Demo
Exceptions
Embedded Systems


Taught by

Black Hat

Related Courses

An Introduction to Computer Networks
Stanford University via Independent Computer Networks
University of Washington via Coursera Computer Networking
Georgia Institute of Technology via Udacity Cybersecurity and Its Ten Domains
University System of Georgia via Coursera Model Building and Validation
AT&T via Udacity