Full Disclosure: Re: [inbox] Breaking LoJack for Laptops

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: [inbox] Breaking LoJack for Laptops

From: Michael Holstein <michael.holstein () csuohio edu>
Date: Tue, 27 Dec 2005 16:21:02 -0500

> in another life, I played witht eh computrace software.  If I remember
> correctly it transmits it's data before the OS fully boots, and it is
> supposed to survive a Ghost re-image or an OS re-install.

I could envision doing this with BIOS participation and taking advantageof the HPA area on an ATA drive .. since Ghost (et.al.) won't 'see' theHPA area as a valid address on the drive.

But to send out a "phone home" packet, you'd have to put a lot of logicin the bios (enough to do tcp/ip, dhcp, dns, plus hardware drivers forethernet, etc).


~Mike.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: Breaking LoJack for Laptops, (continued)
- Re: Breaking LoJack for Laptops Bob Hacker (Dec 24)
  - Re: Breaking LoJack for Laptops Andrew Wong (Dec 25)
    - Re: Breaking LoJack for Laptops Bob Hacker (Dec 25)
    - Re: Breaking LoJack for Laptops Bob Franklin (Dec 25)
- RE: [inbox] Breaking LoJack for Laptops Exibar (Dec 27)
  - Re: [inbox] Breaking LoJack for Laptops Michael Holstein (Dec 27)
    - Re: [inbox] Breaking LoJack for Laptops Steve Friedl (Dec 27)
    - Re: [inbox] Breaking LoJack for Laptops Michael Holstein (Dec 27)
    - Re: [inbox] Breaking LoJack for Laptops nocfed (Dec 28)
    - Re: [inbox] Breaking LoJack for Laptops J.A. Terranson (Dec 27)
- Re: Breaking LoJack for Laptops obnoxious (Dec 25)