Breaking Secure Boot by Experience (BootPwn)

Algemeen

In close cooperation with Raelize B.V., the Netherlands Forensic Institute (NFI) is offering a training course for breaking Secure Boot. Secure Boot is fundamental for assuring the authenticity of the software executed by of embedded devices. Digital forensic experts aiming to break into modern devices will acknowledge that Secure Boot is nowadays a common security feature. Nonetheless, recent Secure Boot attacks, on a wide variety of devices, such as video game consoles and mobile phones, indicate that vulnerable implementations are wide-spread.

Voor wie

Politiemedewerkers die werkzaam zijn binnen het digitale werkveld van TDO en daarin specialist zijn binnen de gebieden van embedded en/of mobile.

Opbouw

The BootPwn experience takes you on a journey of 4 days of 8 hours where you will attend lectures (30%) and perform exciting hands-on exercises (70%).
You will get access to a Virtual Machine (VM) which contains all the required tooling. It’s expected that not all of the exercises are finalized within the training hours. Therefore, you will have access to this VM forever so you can continue with the exercises after the training has ended.

Resultaat

As a Digital Forensic Expert, you will be able to:

• open the device and make physical modifications
• communicate with the internal and external interface
• program the external flash of the device
• perform hardware attacks like fault injection

Praktische informatie

Code: 1900244.000
Type: Training
Examineringtype: Geen

Studielast totaal: 32 sbu
Instituut: 32 sbu

Duur: < 1 week
Totaalprijs: niet individueel afneembaar

Toelichting studielast

De training wordt gevolgd bij het NFI en bedraagt 4 dagen van 8 uur waarbij de verhouding ligt van 30% theorie en 70% hands-on excercises.

Overige informatie

The BootPwn experience takes an offensive perspective in order to explore the attack surface of Secure Boot while identifying and exploitation interesting vulnerabilities applicable to real-world devices. Moreover, it’s hands-on, well- guided and driven by an exciting jeopardy-style format.

Algemene instroomeisen

You are expected to:

• have experience with Python/C programming
• have experience with the ARM architecture (AArch64)
• have an understanding of typical software vulnerabilities
• be familiar with reverse engineering (AArch64)
• be familiar with common cryptography (RSA, AES and SHA)

Vrijstellingen

Lees de algemene informatie over vrijstelling op basis van EVC.

Aanmelden

Ben je werkzaam bij de politie? In overleg met je leidinggevende, meld je aan in Youforce Opleidingsmanagement (YOM). Is er geen geschikte startdatum beschikbaar? Plaats jezelf dan op de wachtlijst. Je ontvangt een mailbericht als er nieuwe startdata beschikbaar zijn.