During my normal, everyday, perusal of information security topics I happened to come across some of David Maynor’s previous research when he used to work for ISS:
“You Are The Trojan” – Toorcon 2005 – Presentation Link
In the above presentation David show us how you can take advantage of reverse DMA mapping to execute exploits via the USB bus. At a more recent conference, Shmoocon 2006, this concept was further explored in:
“Cardbus Bus-Mastering: 0wning the Laptop ” by David Hulton (Unfortunately, no presentation or video has been posted).
I won’t speculate, okay so maybe I will. Could they be using similar techniques to achieve 0wnage with wireless drivers? If so, how do you prevent this?
It also looks as though Johnny “cache” has done some very interesting research as well:
“802.11 Wireless VLANs” – Toorcon 2005 – Presentation Link
It most likely is unrelated, but is interesting none the less.
Paul Asadoorian
Black Hat Wireless Vulnerabilities: Related Research?
Paul Asadoorian
Paul Asadoorian is currently the Principal Security Evangelist for Eclypsium, focused on firmware and supply chain security awareness. Paul’s passion for firmware security extends back many years to the WRT54G hacking days and reverse engineering firmware on IoT devices for fun. Paul and his long-time podcast co-host Larry Pesce co-authored the book “WRTG54G Ultimate Hacking” in 2007, which fueled the firmware hacking fire even more. Paul has worked in technology and information security for over 20 years, holding various security and engineering roles in a lottery company, university, ISP, independent penetration tester, and security product companies such as Tenable. In 2005 Paul founded Security Weekly, a weekly podcast dedicated to hacking and information security. In 2020 Security Weekly was acquired by the Cyberrisk Alliance. Paul is still the host of one of the longest-running security podcasts, Paul’s Security Weekly, he enjoys coding in Python & telling everyone he uses Linux.
