HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 44 guests and 1 member online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Hardwarearrow How an hardware is actually vulnerable to exploitation?
EH-Net
May 23, 2013, 03:10:17 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: How an hardware is actually vulnerable to exploitation?  (Read 24974 times)
0 Members and 1 Guest are viewing this topic.
manoj9372
Jr. Member
**
Offline Offline

Posts: 72


View Profile
« on: September 30, 2010, 11:11:36 AM »
I am just new to these hardware hacking field,
I am just wondering about this field,How actually an hardware is subjected to exploitation?

In software we have incorrect handling of input in the source,so we get some buffer overflows and things,but i don't know what  bug's actually present inside the hardware for exploitation?

Also can a hardware exploit can get us remote code execution?

Need a bit of explanation to make my self-clear...


hope i will get some...
Logged
dante
Jr. Member
**
Offline Offline

Posts: 58



View Profile
« Reply #1 on: September 30, 2010, 01:49:02 PM »
Normally hardware hacking boils down to exploiting firmware, code embedded in chips etc... 
I have not seen messing with the hardware resulting in a vulnerable state until I read about geohot's glitching the memory bus hack... Though geohot's work was significant, in the end it was a heap overflow that opened the iron gates of PS3...

http://ps3wiki.lan.st/index.php/PSJailbreak_Exploit_Reverse_Engineering
Logged
tturner
Sr. Member
****
Offline Offline

Posts: 432


View Profile WWW
« Reply #2 on: November 23, 2010, 09:08:29 AM »
One of my recent faves is the jedi packet trick. Check out the CanSecWest 2010 presentation at http://www.alchemistowl.org/arrigo/Papers/Arrigo-Triulzi-CANSEC10-Project-Maux-III.pdf
Logged
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, OPSE, CSWAE, CSTP, VCP

WIP: OSWP, GSSP-JAVA, GXPN

Udacity on hold, again. I suck.

http://sentinel24.com/blog  @tonylturner http://bsidesorlando.org
taargus taargus
Newbie
*
Offline Offline

Posts: 15



View Profile
« Reply #3 on: July 14, 2011, 09:17:37 PM »
Ahh... hardware exploitation.  Take a look at Chris Tarnovsky's work.  This guy blows my mind.  Chemistry, precision mechanics, and code.  

http://www.youtube.com/watch?v=tnY7UVyaFiQ



PS - Didn't realize I dug up a rather old thread.  Sorry, mods.  
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.065 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.