2021-02-14

[public] 68.7K views, 5.54K likes, 35.0 dislikes audio only

LiveOverflow

When I looked at another SerenityOS exploit, I learned something new! The hack is very creative and directly interacts with hardware. I never really understood how modern CPUs interact with peripherals, so this was very interesting to me.

Previous SerenityOS videos:

/youtube/video/qUh507Na9nk

/youtube/video/oIAP1_NrSbY

Linus' wisdom2 exploit: https://github.com/allesctf/writeups/blob/master/2020/hxpctf/wisdom2/writeup.md

SerenityOS hacking: https://www.youtube.com/watch?v=DhVZ7vO69DI&list=PLMOpZvQB55bcRA5-KjvW7dVyGUarcqZuL

Vulnerable SerenityOS version: https://github.com/SerenityOS/serenity/tree/5505159a94c226d0c8a5e82a163a6d37a9404c57

Binary Exploitation Playlist: /youtube/video/iyAyN3GFM7A

Hardware Wallet Research: /youtube/video/nNBktKw9Is4

00:00 - Intro

00:47 - Accumulating Knowledge Over Years

01:14 - The Plan For This Video

02:00 - Computers are Simple!

02:40 - Computers are Hard!

03:39 - What I Already Know About Kernels

04:58 - Missing Link Between Hardware and Software

06:00 - Andreas Summarizes Another SerenityOS Exploit

08:18 - What Are CPU EFLAGS?

11:02 - What Are IO Ports?

12:03 - Playing With EFLAGS

13:06 - Talking To Hardware via IO Ports

13:45 - Arduino Hardware Example - OUT Instruction

14:45 - Access Harddisk Controller With Ports

15:15 - Detecting Keybord Key Press

15:43 - EUREKA!

16:46 - Outro

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow

→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/

→ Website: https://liveoverflow.com/

→ Subreddit: https://www.reddit.com/r/LiveOverflow/

→ Facebook: https://www.facebook.com/LiveOverflow/