invisiblethings' blog: Xen 0wning Trilogy: code, demos and q35 attack details posted

Xen 0wning Trilogy: code, demos and q35 attack details posted
We have posted all the code that we used last month during our Black Hat presentations about Xen security, and you can get it here. This includes the full source code for:
1) The generic Xen Loadable Modules framework
2) Implementation of the two Xen Hypervisor Rootkits
3) The Q35 exploit
4) The FLASK heap overflow exploit
5) The BluePillBoot (with nested virtualization support on SVM)
6) The XenBluePill (with nested virtualization support on SVM)

BlackHatでは伏せられていた詳細なプレゼン資料と攻撃コードがようやく公開されました。もっとも詳細が公開されたからと言って、全部を理解するのは私にはちょっと厳しそうですが…。