[Code-Crunchers] detecting blue pill and BH challege
Gil Dabah
arkon at ragestorm.net
Sat Jun 30 17:46:32 CDT 2007
I still stick to my old idea that you can run in SMM mode and do
whatever you want...
Fionnbharr wrote:
> I would say timing attacks but it's hard to do a baseline to compare
> to in their competition.
>
> But there is also situations like the TLB + CPUID Ferrie talks about
> in his paper where you don't need a clean base. So my guess would be
> something like that.
>
> On 30/06/07, Gadi Evron <ge at linuxbox.org> wrote:
>
>> On 2007-06-29 15:28-0700, Peter Ferrie wrote:
>>
>>>> Hmm, so what do you think the detection technique is?
>>>>
>>>> Let's at least have one bet going here, winner gets free beer
>>>> once, from each of us who talk about the detection options, and
>>>> from me, too.
>>>>
>>> Oh, I can't collect. Bummer. ;-)
>>>
>> But you can buy them beer. :)
>>
>> _______________________________________________
>> Code-Crunchers mailing list
>> Code-Crunchers at whitestar.linuxbox.org
>> http://whitestar.linuxbox.org/mailman/listinfo/code-crunchers
>>
>>
> _______________________________________________
> Code-Crunchers mailing list
> Code-Crunchers at whitestar.linuxbox.org
> http://whitestar.linuxbox.org/mailman/listinfo/code-crunchers
>
>
More information about the Code-Crunchers
mailing list