I think the real person to talk to about all this would be DR. Phil Polstra - As this is his forte. And I know he's done at least one set of video's concerning exploiting Windows, Linux, and ARM Linux. I think on pluralsite, but I'd have to look again.
On Tue, Apr 12, 2016 at 3:08 PM, William Hermans <[email protected]> wrote: > Personally, I find it a bit scary that when partitioning / formatting > media that has been used for something else prior. Not zeroing out the MBR > before hand. You do realize that without dd, and /dev/zero, the only other > tool that completely wipes out MBR exploits was DOS's fdisk ? Which stopped > shipping after Win95. That includes Linux fdisk, and other tools. > > But the original point I was getting to. An old MBR can, or will interfere > with MLO / u-boot.img when using a FAT partition, and when loading MLO / > u-boot.img from the MBR, unless there is magically a NULL character right > after 512K, there is no telling what will be attempted to be loaded into > memory. *THAT* buddy, is scary. > > On Tue, Apr 12, 2016 at 3:01 PM, William Hermans <[email protected]> > wrote: > >> I was actually thinking of one of the black hat videos I saw last year, >> where they discussed bypassing CPU privileged mode prior to the OS loading. >> But the concept is the same. But who says the instructions would have to be >> x86 ? They don't have to be. >> >> On Tue, Apr 12, 2016 at 1:18 PM, Robert Nelson <[email protected]> >> wrote: >> >>> >>> >>> On Tue, Apr 12, 2016 at 2:30 PM, Carl Krieder <[email protected]> >>> wrote: >>> >>>> You seriously think the ROM is trying to execute x86 code out of LSN >>>> 0???? >>>> >>> >>> It doesn't know it's x86... ;) It tries to excute whatever it see's.. >>> >>> There was a very cool talk at 32nd Chaos Communication Congress this >>> year: >>> >>> https://media.ccc.de/c/32c3 >>> >>> Where in the middle, they took a jpg and ran it thru the 8051 >>> de-compiler and got good 8051 assembly... >>> >>> https://media.ccc.de/v/32c3-7189-key-logger_video_mouse >>> >>> Regards, >>> >>> -- >>> Robert Nelson >>> https://rcn-ee.com/ >>> >>> -- >>> For more options, visit http://beagleboard.org/discuss >>> --- >>> You received this message because you are subscribed to the Google >>> Groups "BeagleBoard" group. >>> To unsubscribe from this group and stop receiving emails from it, send >>> an email to [email protected]. >>> For more options, visit https://groups.google.com/d/optout. >>> >> >> > -- For more options, visit http://beagleboard.org/discuss --- You received this message because you are subscribed to the Google Groups "BeagleBoard" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
