{USBFuzz}: A Framework for Fuzzing {USB} Drivers by Device Emulation
H Peng, M Payer - 29th USENIX Security Symposium (USENIX Security …, 2020 - usenix.org
The Universal Serial Bus (USB) connects external devices to a host. This interface exposes
the OS kernels and device drivers to attacks by malicious devices. Unfortunately, kernels …
the OS kernels and device drivers to attacks by malicious devices. Unfortunately, kernels …
Agamotto: Accelerating kernel driver fuzzing with lightweight virtual machine checkpoints
Kernel-mode drivers are challenging to analyze for vulnerabilities, yet play a critical role in
maintaining the security of OS kernels. Their wide attack surface, exposed via both the …
maintaining the security of OS kernels. Their wide attack surface, exposed via both the …
[PDF][PDF] Periscope: An effective probing and fuzzing framework for the hardware-os boundary
The OS kernel is an attractive target for remote attackers. If compromised, the kernel gives
adversaries full system access, including the ability to install rootkits, extract sensitive …
adversaries full system access, including the ability to install rootkits, extract sensitive …
Hardlog: Practical tamper-proof system auditing using a novel audit device
Audit systems maintain detailed logs of security-related events on enterprise machines to
forensically analyze potential incidents. In principle, these logs should be safely stored in a …
forensically analyze potential incidents. In principle, these logs should be safely stored in a …
[PDF][PDF] Badbluetooth: Breaking android security mechanisms via malicious bluetooth peripherals.
Bluetooth is a widely used communication technology, especially under the scenarios of
mobile computing and Internet of Things. Once paired with a host device, a Bluetooth device …
mobile computing and Internet of Things. Once paired with a host device, a Bluetooth device …
SoK:" Plug & Pray" today–understanding USB insecurity in versions 1 through C
USB-based attacks have increased in complexity in recent years. Modern attacks now
incorporate a wide range of attack vectors, from social engineering to signal injection. To …
incorporate a wide range of attack vectors, from social engineering to signal injection. To …
Fuzz The Power: Dual-role State Guided Black-box Fuzzing for {USB} Power Delivery
USB Power Delivery (USBPD) is a state-of-the-art charging protocol for advanced power
supply. Thanks to its high volume of power supply, it has been widely adopted by consumer …
supply. Thanks to its high volume of power supply, it has been widely adopted by consumer …
Lbm: A security framework for peripherals within the linux kernel
Modern computer peripherals are diverse in their capabilities and functionality, ranging from
keyboards and printers to smartphones and external GPUs. In recent years, peripherals …
keyboards and printers to smartphones and external GPUs. In recent years, peripherals …
Characterizing, exploiting, and detecting DMA code injection vulnerabilities in the presence of an IOMMU
Direct memory access (DMA) renders a system vulnerable to DMA attacks, in which I/O
devices access memory regions not intended for their use. Hardware input-output memory …
devices access memory regions not intended for their use. Hardware input-output memory …
{USB} snooping made easy: crosstalk leakage attacks on {USB} hubs
The Universal Serial Bus (USB) is the most prominent interface for connecting peripheral
devices to computers. USB-connected input devices, such as keyboards, card-swipers and …
devices to computers. USB-connected input devices, such as keyboards, card-swipers and …