GPU-pass-through-compatibility-check: Automatically set up a Linux system for PCI pass-through and check if it is compatible

December 1, 2018 ~ hucktech ~ Leave a comment

This project consists of 3 parts.
1) A script (gpu-pt-check.sh) that automatically checks to what extend a computer is compatible with GPU pass-through in its given configuration.
2) A script (setup.sh) that automatically installs and configures your system for GPU pass-through (Only tested on fresh installs of Fedora 28 x64 with Gnome, booted in UEFI mode!)
3) Instructions on how to create a bootable Linux USB stick that automatically runs the gpu-pt-check.sh script when you boot from it without any user interaction required.

example output

https://github.com/T-vK/GPU-pass-through-compatibility-check

PCILeech 3.6 released

October 31, 2018 ~ hucktech ~ Leave a comment

PCILeech – PCIe DMA attack toolkit – bug fix release v3.6 – fixes long standing bugs incl. 'missing dll issue'. Also new exported functions in DLL. https://t.co/u7baZL5EuM

— Ulf Frisk (@UlfFrisk) October 30, 2018

https://github.com/ufrisk/pcileech/releases/tag/v3.6

https://github.com/ufrisk/pcileech/

PCILeech 3.5 released

August 21, 2018 ~ hucktech ~ Leave a comment

PCILeech DLL / v3.5 released! PCIe DMA attacks of physical memory _and_ virtual in-process memory made super easy to include in your favorite projects with this brand new easy to use attack API 😈 https://t.co/u7baZL5EuM

— Ulf Frisk (@UlfFrisk) August 21, 2018

https://github.com/ufrisk/pcileech/

https://github.com/ufrisk/pcileech/commit/7cb27dd8ffb4637d4fc939994de614296e512b34

Intel updates PCIe security spec

July 11, 2018 ~ hucktech ~ Leave a comment

Re: https://firmwaresecurity.com/2018/03/17/intel-publishes-pcie-device-security-enhancements-spec/

We've just released the PCIe Device Security Enhancements Specification 0.7 (https://t.co/cux3jtAJ0w). Feedbacks are, as usual, very welcome.

— Rodrigo Branco (@bsdaemon) July 10, 2018

The PHY Interface for the PCI Express* (PIPE) Architecture Revision 5.1 is an updated version of the PIPE spec that supports PCI Express, SATA, USB, DisplayPort, and Converged I/O architectures.

The review draft PCI Express* Device Security Enhancements Specification Revision 0.7 defines PCIe* Device Firmware Measurement and PCIe* Device Authentication that enable a Host to query and verify the identity and capability of a PCIe* Device, to improve system security.

https://www.intel.com/content/www/us/en/io/pci-express/pci-express-architecture-devnet-resources.html

Practical DMA attack on Windows 10

May 31, 2018 ~ hucktech ~ Leave a comment

New technical write-up by @Fist0urs on how to perform a DMA attack against a Windows 10 workstation (TPM-only BitLocker) https://t.co/GZIV7Z1but

— Synacktiv (@Synacktiv) May 30, 2018

Practical DMA attack on Windows 10
Written by Jean-Christophe Delaunay · 2018-05-30 · in Pentest

Among the various security assessments performed by Synacktiv, some involve attacking the security hardening of a laptop or workstation master image that will be massively deployed in an infrastructure. The purpose of this kind of security assessment is to give the client an overview of its level of maturity regarding security concerns and provide him with some recommendations in order to increase his level of security. This post describes how Synacktiv defeated a workstation security measures by using a hardware approach.[…]

https://www.synacktiv.com/posts/pentest/practical-dma-attack-on-windows-10.html

Example photo of Evil Maid attacker in their lab: 🙂

auditor

PCILeech 3.3 released

May 21, 2018 ~ hucktech ~ Leave a comment

PCILeech memory process file system updated! 32-bit process support, access to imports, exports, directories, sections via file system! Memory dump files = read only 😀 PCIe DMA FPGA or "TotalMeltdown" = read/write 😈 https://t.co/KuTVVzZc5j pic.twitter.com/oLkO7C9Ca8

— Ulf Frisk (@UlfFrisk) May 21, 2018

https://github.com/ufrisk/pcileech

https://github.com/ufrisk/pcileech/commit/c812206597c25a4c29a27189deb814af8464ba73

PCILeech 3.1 released!

March 20, 2018 ~ hucktech ~ Leave a comment

Linux support for PCILeech FPGA PCIe DMA attacks finally released! Huge thanks to @key2fr for the driver making this possible and to ikelos for all time spent on hunting down the bugs! https://t.co/KuTVVzZc5j

— Ulf Frisk (@UlfFrisk) March 20, 2018

https://github.com/ufrisk/pcileech

Intel publishes PCIe Device Security Enhancements spec

March 17, 2018 ~ hucktech ~ 1 Comment

Intel just published a draft of their proposed PCIe firmware measurement and device authentication spec. This is one of the things @syncsrc and I were talking about at @shmoocon.https://t.co/Y4X8eErZQC
These enhancements allow hardware-backed firmware measurements.

— Paul McMillan (@PaulM) March 16, 2018

PCIe Device Security Enhancements Specification

PCI Express (PCIe) Devices may be composed of hardware (immutable) and firmware (immutable and mutable) components. Presently, Vendor ID/Device ID/Revision ID registers convey the hardware identify of a PCIe* Device and there is no defined mechanism to convey the firmware identity of a PCIe Device. In addition to the Device identity, PCIe specification defines various types of capability structures to convey PCIe Device features capabilities. Both the Device Identity and capability can be spoofed and used maliciously by an advanced adversary. This specification introduces the notion of PCIe* Device Firmware Measurement, a method of exposing the identity of Device firmware. The Device Firmware Measurement mechanism used in isolation, however, is subject to supply chain attacks such as counterfeiting and can also be spoofed by an advanced adversary. Additionally this specification introduces the notion of PCIe Device Authentication, which uses public key cryptography to defend against such attacks and to provide higher assurance about the hardware and firmware identities and capabilities. PCIe Device Authentication adapts the USB Authentication mechanism to PCIe—the new elements are the specific PCIe register interface and the associated mechanisms, plus some details that are necessarily specific to PCIe. PCIe Device Authentication result can be used in various scenarios such as: 1) a data center administrator can ensure all PCIe Devices are running appropriate firmware versions 2) system software can ensure a trusted Device is plugged in before enabling the PCIe Address Translation Services (ATS) for the Device. PCIe Device Authentication provides platforms with a way to make trust decisions about specific Devices. This in turn provides value to Device vendors because the Authentication feature is itself a valuable Device feature, and supports the detection of counterfeit and potentially malicious Devices. This specification details the requirements, interface and protocol for PCIe Device Firmware Measurement and PCIe Device Authentication. It also provides general guidelines for implementing these technologies in practice.

https://www.intel.com/content/www/us/en/io/pci-express/pcie-device-security-enhancements-spec.html

PCILeech3 and Memory Process File System released!

March 12, 2018March 12, 2018 ~ hucktech ~ Leave a comment

Targets 64-bit Intel systems running Windows.

Memory Process File System and PCILeech3 released! Map processes and virtual memory as files & folders!
Use memory dump files or PCIe DMA devices to edit live process memory. More info in blog entry. https://t.co/EfgwZeQSQA https://t.co/KuTVVzZc5j pic.twitter.com/DB6deQAe1G

— Ulf Frisk (@UlfFrisk) March 12, 2018

http://blog.frizk.net/2018/03/memory-process-file-system.html

https://github.com/ufrisk/pcileech

PCILeech updated with board support

February 8, 2018 ~ hucktech ~ Leave a comment

PCILeech PCIe DMA attack support released for PCIeScreamer and AC701 FPGA boards! https://t.co/Vru50qY7ks pic.twitter.com/P1unfBIgPh

— Ulf Frisk (@UlfFrisk) February 8, 2018

https://github.com/ufrisk/pcileech-fpga

https://www.xilinx.com/products/boards-and-kits/ek-a7-ac701-g.html

https://shop.lambdaconcept.com/

pcie_injector – PCIe Injector Gateway – based on Xilinx Artix7 FPGA and FTDI USB FT601 chip

December 31, 2017 ~ hucktech ~ Leave a comment

Latest commit: 2 days ago

Want to masquerade as a PCIe device? Want to learn DMA attack? Check out the cheapest FPGA based PCIe over USB 3 card with DDR3 RAM. Made in colab. with @enjoy_digital. Soon supported by @UlfFrisk for PCILeech as shown @ #ccc https://t.co/EgHC9TpYKo pic.twitter.com/oc4kp6KUWd

— key two (@key2fr) December 29, 2017

PCIe Injector Gateware

The PCIe bus is now the main high speed communication bus between a processor and its peripherials. It is used in all PC (sometime encapsulated in Thunderbolt) and now even in mobile phones. Doing security research on PCIe systems can requires very expensive tools (>$50k) and packet generaration for such tools is not a common feature. PCIe Injector provides a such tool at a more reasonable price. Currently, only few attacks were made on PCIe devices. Most of them were done using a Microblaze inside a Xilinx FPGA to send/receive the TLPs, making it hard to really analyze. (Using embedded C software to generate/analyze traffic) An other way is to use USB3380 chip, but it is also not flexible enough (only supporting 32bits addressing) and does not allow debugging the PCIe state machine.

The PCIe injector is based on a Artix7 FPGA from Xilinx connected to a DDR3 and a high speed USB 3.0 FT601 chip from FTDI. It allows:
* Having a full control of the PCIe core.
* Sending/Receiving TLPs through USB 3.0 (or bufferize it to/from DDR3)
* Using flexible software/tools on the Host for receiving/generating/analyzing the TLPs. (Wireshark dissectors, scapy, …)

https://github.com/enjoy-digital/pcie_injector

http://www.enjoy-digital.fr/

http://pcisig.com/

Sysdream article on using PCILeech to attack Windows

December 25, 2017 ~ hucktech ~ Leave a comment

Nice article by Sysdream on using PCIleech to attack Windows DMA.

Merry christmas from our lab, with this article on DMA attack against Windows: https://t.co/Y3GIkRPsww #infosec #dma #pcileech

Thanks @UlfFrisk !

— Sysdream (@sysdream) December 22, 2017

Thanks, Awesome read about how to roll your own signatures to your advantage 😈 As mentioned, FPGA DMA is the way of the future – hope to present some upcoming news at #34c3

— Ulf Frisk (@UlfFrisk) December 22, 2017

https://sysdream.com/news/lab/2017-12-22-windows-dma-attacks-gaining-system-shells-using-a-generic-patch/

Chipsec v1.3.4 released

October 24, 2017 ~ hucktech ~ Leave a comment

CHIPSEC 1.3.4 is released. @chipsec https://t.co/1StKLnACNH

— ALF (@Simiiforme) October 24, 2017

New or Updated Functionality:
* Updated support for 7th/8th generation Intel processors
* Added ability to undefine a configuration entry
* Added HAL and utilcmd for TPM Event Log
* Added utilcmd for TPM commands
* Added support for Apollo Lake
* added utilcmd to inspect PCI command/control registers

https://github.com/chipsec/chipsec/commits/master

https://github.com/chipsec/chipsec/releases/tag/v1.3.4

PCI Express DIY hacking toolkit

October 8, 2017 ~ hucktech ~ Leave a comment

I released some part of my DMA attack tools based on Xilinx SP605 evaluation kit to public, enjoy 🙂 https://t.co/M5ZnmsVbtB

— Dmytro Oleksiuk (@d_olex) October 8, 2017

This repository contains a set of tools and proof of concepts related to PCI-E bus and DMA attacks. It includes HDL design which implements software controllable PCI-E gen 1.1 endpoint device for Xilinx SP605 Evaluation Kit with Spartan-6 FPGA. In comparison with popular USB3380EVB this design allows to operate with raw Transaction Level Packets (TLP) of PCI-E bus and perform full 64-bit memory read/write operations. It’s early version of my first much or less complicated FPGA project, so the speed is quite slow (around 1-2 Mb/s), but in upcoming releases it will be significantly increased by connecting PCI-E endpoint to MicroBlaze soft processor with AXI DMA engine. However, even such low speed is more than enough for reliable implementation of various practical attacks over PCI-E bus: to demonstrate applied use cases of the design, there’s a tool for pre-boot DMA attacks on UEFI based machines which allow executing arbitrary UEFI DXE drivers during platform init. Another example shows how to use pre-boot DMA attacks to inject Hyper-V VM exit handler backdoor into the virtualization-based security enabled Windows 10 Enterprise running on UEFI Secure Boot enabled platform. Provided Hyper-V backdoor PoC might be useful for reverse engineering and exploit development purposes, it provides an interface for inspecting of hypervisor state (VMCS, physical/virtual memory, registers, etc.) from guest partition and perform the guest to host VM escape attacks.

https://github.com/Cr4sh/s6_pcie_microblaze

PCILeech presentation uploaded

September 14, 2017 ~ hucktech ~ Leave a comment

Ulf has a new presentation on PCIe attacks online!

Looking forward watching the talk on youtube, slides at https://t.co/yeGFko6tgy

— Ulf Frisk (@UlfFrisk) September 13, 2017

https://github.com/ufrisk/presentations

Click to access SEC-T-0x0Anniversary-Ulf-Frisk-Evil-Devices-and-Direct-Memory-Attacks.pdf

Intel patent on “PCI Expansion ROM OS”

August 15, 2017 ~ hucktech ~ Leave a comment

brief patent mention: spoiler alert…..

Fun, Pinczakko’s PCI expansion ROM research was cited in an Intel patent claim. 🙂

http://bioshacking.blogspot.com/2017/08/rather-late-surprise-intel-has-pci.html

https://sites.google.com/site/pinczakko/building-a-kernel-in-pci-expansion-rom

https://www.google.com/patents/WO2012040606A2?cl=en

Inception: hacking tool exploiting PCI-based DMA

July 19, 2017 ~ hucktech ~ Leave a comment

Inception has been around since at least 2014, but I just noticed it. 😦

Inception is a physical memory manipulation and hacking tool exploiting PCI-based DMA. The tool can attack over FireWire, Thunderbolt, ExpressCard, PC Card and any other PCI/PCIe interfaces. Inception aims to provide a relatively quick, stable and easy way of performing intrusive and non-intrusive memory hacks against live computers using DMA. Inception’s modules work as follows: By presenting a Serial Bus Protocol 2 (SBP-2) unit directory to the victim machine over a IEEE1394 FireWire interface, the victim operating system thinks that a SBP-2 device has connected to the FireWire port. Since SBP-2 devices utilize Direct Memory Access (DMA) for fast, large bulk data transfers (e.g., FireWire hard drives and digital camcorders), the victim lowers its shields and enables DMA for the device. The tool now has full read/write access to the lower 4GB of RAM on the victim. Once DMA is granted, the tool proceeds to search through available memory pages for signatures at certain offsets in the operating system’s code. Once found, the tool manipulates this code. For instance, in the unlock module, the tool short circuits the operating system’s password authentication module that is triggered if an incorrect password is entered. […] However, vendors generally dismiss DMA attacks as a non-issue, which I hope that the awareness that this tool generates will change. Users deserve secure devices, even when attackers gain physical access.[…]

https://github.com/carmaa/inception
http://www.breaknenter.org/projects/inception/
http://www.breaknenter.org/2014/09/inception-metasploit-integration/

Dmytro on Apple PCI-E Thunderbolt

July 16, 2017 ~ hucktech ~ Leave a comment

SP605 fits just perfect into it's HighPoint Thunderbolt 2 enclosure 👌
Finally can check how good IOMMU is configured on Apple machines pic.twitter.com/h7dJ7wf6bD

— Dmytro Oleksiuk (@d_olex) July 15, 2017

An interesting finding while playing with PCI-E on OS X: different Thunderbolt devices can access the same DMA buffers mapped by IOMMU [1/2] pic.twitter.com/TbMSYhkl1F

— Dmytro Oleksiuk (@d_olex) July 15, 2017

It's HTTP traffic that going over my Thunderbolt to Ethernet adapter, it was intercepted by FPGA connected to other Thunderbolt port [2/2]

— Dmytro Oleksiuk (@d_olex) July 15, 2017

Yay, evil Thuderbolt device also can access I/O buffers of disk controller which talks to internal SSD of my MacBook Pro pic.twitter.com/nsqUJa6brN

— Dmytro Oleksiuk (@d_olex) July 15, 2017

By the way, I have enabled FileVault which encrypts that SSD, but rogue device somehow is able to see unencrypted filesystem data 😬 #wtf pic.twitter.com/VV6Qo0Y7Hn

— Dmytro Oleksiuk (@d_olex) July 15, 2017

This issue is confirmed for fully patched OS X Sierra, even physical locations of DMA buffers are the same [1/x]https://t.co/2tWLt3rZoD

— Dmytro Oleksiuk (@d_olex) July 16, 2017

OS X offers improper IOMMU support which isolates PCI-E devices from OS, but not from I/O buffers of each others [2/x]

— Dmytro Oleksiuk (@d_olex) July 16, 2017

So, evil PCI-E device can intercept and modify the data which going over your network card or disk controller [3/3] https://t.co/5D3zTcM9Os

— Dmytro Oleksiuk (@d_olex) July 16, 2017

Yes, boot chain level attack is related only for Macs because technically they doesn't have secure boot

— Dmytro Oleksiuk (@d_olex) July 16, 2017

Device still can poison the data of some binary, script or config file to gain code exec at OS level, FileVault doesn't helps

— Dmytro Oleksiuk (@d_olex) July 16, 2017

Dmytro on PCI-E/SMM vulnerability

June 22, 2017 ~ hucktech ~ Leave a comment

Dmytro has an interesting 6-part twitter post on PCI-e security:

Rogue PCI-E/FireWire/Thunderbolt/etc. device can exploit platform firmware vulns to execute arbitrary System Management Mode code [1/x] pic.twitter.com/CueD3ke0yb

— Dmytro Oleksiuk (@d_olex) June 22, 2017

Normally SMM memory is protected against rogue DMA using TSEGMB register, discovered vulnerability allows to break this mechanism [2/x]

— Dmytro Oleksiuk (@d_olex) June 22, 2017

For most of computers with Intel chips SMM code execution means that attacker can infect platform firmware with persistent rootkit [3/x]

— Dmytro Oleksiuk (@d_olex) June 22, 2017

Vulnerability exists because of design flaws in Intel reference code, it presents in EFI 2.x firmware of almost all new computers [4/x]

— Dmytro Oleksiuk (@d_olex) June 22, 2017

Apple is only one vendor so far who not vulnerable for sure (they're know how to cook PCI-E and IOMMU properly :)) [5/x]

— Dmytro Oleksiuk (@d_olex) June 22, 2017

FPGA powered toolkit which implements the attack was tested on Intel NUC 6i3SYH. Test setup pic: https://t.co/59eEwsy2qa [6/6]

— Dmytro Oleksiuk (@d_olex) June 22, 2017

I discovered this vuln a while ago but had no FPGA knowledge to craft the hardware which can exploit it. Now I can report it to Intel 🙂

— Dmytro Oleksiuk (@d_olex) June 22, 2017

PCILeech for Android (and Linux)

June 12, 2017 ~ hucktech ~ Leave a comment

PCILeech Linux and Android support finally released! PCIe DMA attack toolkit. https://t.co/KuTVVzZc5j pic.twitter.com/D8mvv1qeAH

— Ulf Frisk (@UlfFrisk) June 12, 2017

https://github.com/ufrisk/pcileech

https://github.com/ufrisk/pcileech/blob/master/Android.md