YoVDO

Breaking VSM by Attacking SecureKernel

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses Ethical Hacking Courses Windows 10 Security Courses Arbitrary Code Execution Courses

Course Description

Overview

Explore a comprehensive analysis of vulnerabilities in Windows 10's SecureKernel, a critical component of Microsoft's Virtualization Based Security (VBS) model. Delve into the discovery and exploitation of two vulnerabilities that could compromise the entire VBS system by allowing arbitrary code execution in VTL1. Follow the presenters' step-by-step process of exploiting these vulnerabilities on the latest Windows version, gaining insights into the intricacies of virtualization stack security. Learn about SecureKernel Pool, Pull Allocations, Push Shipping, and various MDR concepts. Witness live demonstrations of exploitation techniques, including kmdl safe structures, mdl free idea, and pt allocator target structure. Gain valuable knowledge about the potential weaknesses in virtualization-based security technologies and the importance of continuous improvement in software stack security.

Syllabus

Introduction
First Vulnerability
SecureKernel Pool
Pull Allocations
Push Shipping
Undo MDR
Ascii MDR
LeftArm Context
PowerMdl
RedWhatWhere
Summary
Demo
Demonstration
skmdl
safe
structures
mdl
free idea
pt allocator
target structure
in action
crash
conclusion
Questions


Taught by

Black Hat

Related Courses

Kernel Exploitation with a File System Fuzzer
Hack In The Box Security Conference via YouTube The Road to iOS Sandbox Escape
Hack In The Box Security Conference via YouTube The Great Escape of ESXi
media.ccc.de via YouTube Exploiting QSEE, The Raelize Way
Hack In The Box Security Conference via YouTube The Best Laid Schemes - Attacking URL Schemes
Hack In The Box Security Conference via YouTube