YoVDO

Fully Arbitrary 802.3 Packet Injection - Maximizing the Ethernet Attack Surface

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Network Security Courses Embedded Systems Courses Network Analysis Courses Hardware Security Courses

Course Description

Overview

Explore advanced Ethernet packet injection techniques in this Black Hat USA 2013 conference talk. Delve into the intricacies of Fast Ethernet layers 1 and 2, uncovering novel attack methods using affordable hardware with custom firmware. Learn how to craft fully arbitrary packets, manipulate Frame Check Sequence (FCS) and Start-of-Frame delimiter (SFD), and perform Ethernet Packet-In-Packet injection. Discover the implications for testing and analyzing networked embedded systems in automation, automotive, and avionics industries. Examine specific frame manipulations triggering SFD parsing anomalies and their security relevance. Witness the first public demonstration of remote Ethernet Packet-In-Packet injection and gain insights into expanding the Ethernet attack surface.

Syllabus

Introduction
Presentation Overview
What are we talking about
Signaling Data
Signaling Codes
Frame Delimiter
Motivation
Received invalid packets and frames
Patching the kernel
Example
Hardware
Custom Injector Framework
Fingerprinting
Escaping Passing Network Table
Packet Analysis
Demonstration
Presentation
Packet Injection
Packet Injection Example
Demo
Live Demo
Exceptions
Embedded Systems


Taught by

Black Hat

Related Courses

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip
Black Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube