状态操纵:通过协议状态机重配置揭示蓝牙漏洞发现中的新攻击向量.pdf

编号:981828 PDF 37页 8.43MB 下载积分:VIP专享
下载报告请您先登录!

1、#BHAS BlackHatEvents Lidong Li&Kun Dong&Xiao Wang SourceGuard#BHAS BlackHatEvents About Us Lidong LiLidong Li:Source GuardChief Security Officer.Specializing in protocol vulnerability mining and Fuzzing framework development.He is the core developer of the Wisdom&Swift Fuzzer.HITB/POC/ISC SpeakerKun

2、 Dong:Kun Dong:Source GuardCEO.Ph.D.in Cybersecurity from Xidian University,specializing in chip security research and AI adversarial security research Xiao WangXiao Wang:Source GuardSenior Security Researcher.His expertise lies in vulnerability discovery within the realms of wireless protocols,incl

3、uding Bluetooth,Wi-Fi security.#BHAS BlackHatEvents Agenda Bluetooth protocol stack&state machine analysis The bottleneck of traditional TLV-format Fuzzing Disrupting the state machine to discover new Bluetooth vulnerabilities#BHAS BlackHatEvents#BHAS BlackHatEvents Bluetooth protocol stack&State ma

4、chine analysis#BHAS BlackHatEvents Bluetooth protocol stack&State machine analysis#BHAS BlackHatEvents#BHAS BlackHatEvents The bottleneck of traditional TLV-format fuzzing#BHAS BlackHatEvents The bottleneck of traditional TLV-format Fuzzing Random targeting of TLV without purpose Drivers inspection

5、and validation of malformed packets Non-purposeful(non-targeted)interaction packets Incomplete state machin e coverage#BHAS BlackHatEvents The bottleneck of traditional TLV-format Fuzzing CVE-2017-0781 CVE-2020-12351 CVE-2023-45866#BHAS BlackHatEvents#BHAS BlackHatEvents#BHAS BlackHatEventsDisruptin

6、g the state machine to discover new Bluetooth vulnerabilitiesFactors that affect state machine interactions?1.2.#BHAS BlackHatEventsDisrupting the state machine to discover new Bluetooth vulnerabilities1.L2CAP Connect Request2.L2CAP Connect Response 3.L2CAP Channel Configuration4.Data Transfer&Disco

友情提示

1、下载报告失败解决办法
2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
4、本站报告下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。

本文(状态操纵:通过协议状态机重配置揭示蓝牙漏洞发现中的新攻击向量.pdf)为本站 (竿头日上) 主动上传,三个皮匠报告文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知三个皮匠报告文库(点击联系客服),我们立即给予删除!

温馨提示:如果因为网速或其他原因下载失败请重新下载,重复下载不扣分。
客服
商务合作
小程序
服务号
折叠