BSides Birmingham 2024

The boot process is the earliest point in a computer's lifecycle. As the OS has significantly increased its security posture, the boot phase has become a more attractive infection vector despite it being more platform dependent and potential for system bricking. The boot process is not as well documented in literature as compared to other technical pieces of computing systems which can make the whole process and the threats surrounding it feel like black magic. This talk intends to guide the audience through the history of booting to explain how we got here and the security posture of booting starting at (1) BIOS, (2) the advent of UEFI, and (3) UEFI extensions such as secure boot.