BMCLeech: Introducing Stealthy Memory Forensics to BMC. (April 2020)
- Record Type:
- Journal Article
- Title:
- BMCLeech: Introducing Stealthy Memory Forensics to BMC. (April 2020)
- Main Title:
- BMCLeech: Introducing Stealthy Memory Forensics to BMC
- Authors:
- Latzo, Tobias
Brost, Julian
Freiling, Felix - Abstract:
- Abstract: Several system management technologies have been introduced that leverage additional devices on the main board to asynchronously access and control the host's computing resources. One such prominent technology for server systems is the Baseboard Management Controller (BMC), a co-processors with some firmware that allows an administrator to monitor and administer a server remotely. This paper introduces BMCLeech, the first software that brings forensic memory acquisition onto the BMC which makes it very useful for incident response teams. BMCLeech is based on the open source BMC implementation OpenBMC and internally leverages the power of PCILeech, a well-known framework for memory acquisition via DMA.
- Is Part Of:
- Forensic science international. Volume 32(2020)Supplement
- Journal:
- Forensic science international
- Issue:
- Volume 32(2020)Supplement
- Issue Display:
- Volume 32, Issue 2020 (2020)
- Year:
- 2020
- Volume:
- 32
- Issue:
- 2020
- Issue Sort Value:
- 2020-0032-2020-0000
- Page Start:
- Page End:
- Publication Date:
- 2020-04
- Journal URLs:
- http://www.sciencedirect.com/ ↗
- DOI:
- 10.1016/j.fsidi.2020.300919 ↗
- Languages:
- English
- ISSNs:
- 2666-2817
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 19463.xml