CISO Webinars

More Shadow Walker The Progression of TLB Splitting On X86 Jacob Torrey

Posted by CISO Platform on December 16, 2014 at 1:47am
Views: 123
Get Embed Code
Tags: cpas2014, conference
This talk will cover the concept of mis-using the hardware (x86 translation lookaside buffer) to provide code hiding and how the evolution of the Intel x86 architecture has rendered previous techniques obsolete and new techniques to perform TLB-splitting on modern hardware. After requisite background is provided, the talk will then move to the new research, the author's method for splitting a TLB on Core i-series and newer processors and how it can again be used for defensive (MoRE code-injection detection) and offensive purposes (EPT Shadow Walker root-kit). This talk will be very high-level but aims to convey the complexities of the hardware and possible attack vectors that can happen at the lowest-levels of an organization's IT infrastructure.

You need to be a member of CISO Platform to add comments!

Join CISO Platform

E-mail me when people leave their comments –
Follow

Popular Videos
Attacks on Smart TV and Connected Smart Devices
First 90 Days For A CISO - Matthew Ireland & Bikash Barai
Why Is Gartner Talking About External Attack Surface Management (EASM)?
(Best Of The World) The Dark Future of Privacy By Menny Barzilay (Ex CISO, Israeli Defense)
(Keynote) How To Actually Grow Your SOC? - Anton Chuvakin
The Challenge Of CISO Burnout - Impacts & Strategic Mitigation Tactics