There Will Be Glitches - Extracting and Analyzing Automotive Firmware Efficiently
Offered By: Black Hat via YouTube
Course Description
Overview
Syllabus
Intro
Today we target an Instrument Cluster
Let's get our target's firmware!
Quick analysis of our dashboard
Fault Injection - Tooling
What happens when we glitch?
Fault Injection breaks things!
Glitching the Security Access Check Results
Glitching ReadMemoryByAddress Results
Fault Injection demo setup
Finding the right parameters: Randomize
There is a relationship!
Why not a 100% success rate? :'
The Plan
Static analysis?
Tools?
What do we need?
Emulating the CPU architecture
"Implementing" peripherals
How difficult was it?
Why write an emulator?
Execution tracing
Taint tracking
Demo Time!!!
Wrap up!
Debug interfaces
Electromagnetic Fault Injection
Fault Injection is universal
Hardening ECU hardware
Hardening ECU software
Hardening ECU design
Key takeaways
There were glitches... hopefully!;
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube