Darren McDonald
Darren has been penetration testing for 16 years, spending the last 6 years running his own small penetration testing consultancy Cryptic Red. He's into red teaming, hardware hacking, and coding rust.
Session
12-14
10:00
120min
Bypassing BitLocker by Sniffing the SPI Bus
Darren McDonald, Craig S. Blackie
In this workshop, participants will delve into the intricacies of bypassing BitLocker encryption in TPM Only mode. Through hands-on exercises, attendees will gain practical knowledge on monitoring SPI buses with digital logic analysers, extracting TPM data, and mounting and decrypting disks. This session is tailored for penetration testers performing stolen device assessments, red team professionals, security enthusiasts seeking to secure their devices, and forensic analysts involved in data recovery.
Workshops
Workshop Room 1