Network Security: Detailed info on RE: [Full-Disclosure] Bios programming...

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

RE: [Full-Disclosure] Bios programming...

from [Digitalchaos] Network Security

[Permanent Link]

Subject:	RE: [Full-Disclosure] Bios programming...
Date:	Thu, 3 Mar 2005 21:51:24 -0500

Matt, maybe you should not be so concerned with 

trying to put code into the bios; but, rather 

install it to the boot sector of the hard drive.

That is copy the monitoring program to the boot sector

That will launch the "service" you are talking about

And that service can also rewrite itself to the boot

Sector (*hint* *hint* a "boot sector virus", perhaps?)

That can be spread to all of the people's email addresses

That you harvest from this little operation (this would include

An executable attachment that would restore the service to the hard
drive, upon

Execution).  I mean, that is the only feasible means for you to

Have this service installed remotely (that is you will probably

Not be given direct, physical, access to the users computer -- which

Means no hardware or bios chip modifications or EEPROM Reprogramming).

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [Full-Disclosure] Bios programming..., (continued) Re: [Full-Disclosure] Bios programming..., Pedro Venda Re: [Full-Disclosure] Bios programming..., 'FoR ReaLz' E. Balansay RE: [Full-Disclosure] Bios programming..., Aditya Deshmukh Re: [Full-Disclosure] Bios programming..., Philipp Walther RE: [Full-Disclosure] Bios programming..., Matt Marooney Re: [Full-Disclosure] Bios programming..., Michael Holstein RE: [Full-Disclosure] Bios programming..., Matt Marooney RE: [Full-Disclosure] Bios programming..., Aditya Deshmukh Re: [Full-Disclosure] Bios programming..., Valdis . Kletnieks Re: [Full-Disclosure] Bios programming..., devis RE: [Full-Disclosure] Bios programming..., Digitalchaos <= RE: [Full-Disclosure] Bios programming..., David Royer

Previous by Date:	RE: [Full-Disclosure] Windows Registry Analzyer, Aditya Deshmukh
Next by Date:	RE: [Full-Disclosure] Windows Registry Analzyer, Aditya Deshmukh
Previous by Thread:	Re: [Full-Disclosure] Bios programming..., devis
Next by Thread:	RE: [Full-Disclosure] Bios programming..., David Royer
Indexes:	[Date] [Thread] [Top] [All Lists]