DE MYSTERIIS DOM JOBSIVS Mac EFI Rootkits - Reverse ...
DE MYSTERIIS DOM JOBSIVS Mac EFI Rootkits - Reverse ...
DE MYSTERIIS DOM JOBSIVS Mac EFI Rootkits - Reverse ...
- No tags were found...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
DOING BAD THINGS WITH <strong>EFI</strong>ATTACKING WHOLE-DISK ENCRYPTION‣ Stealing the user’s passphrase‣ Keystroke logger!‣ Hook the Simple Text Input protocol‣ Specifically, the instance installed by the bootloader‣ Replace pointer to ReadKeyStroke() with our function‣ Every time a key is pressed, we get called‣ Record keystroke, call real ReadKeyStroke()De Mysteriis Dom Jobsivs - Black Hat USA2012