Netscreen of the Dead: Developing a Trojaned ScreenOS for Juniper Netscreen Appliances

March 10, 2010 (at 10:30 a.m.) in Attack & Research

Core network security appliances are often considered to be more secure than traditional systems because the operating systems they run are supplied as obfuscated, undocumented binary firmware. Juniper Inc supplies a complete range of security appliances that all run a closed source operating system called ScreenOS which they supply as firmware.

This presentation will detail how the Juniper Netscreen platform can be completely subverted by installation of attacker modified firmware. This firmware is effectively an embedded rootkit.

Graeme Neilson

Graeme Neilson, Chief Research Officer, RedShield Security.