YoVDO

COMpromise - Remote Code Execution in Windows Development Environments

Offered By: nullcon via YouTube

Tags

nullcon Courses Reverse Engineering Courses Microsoft Visual Studio Courses Remote Code Execution (RCE) Courses Remote Code Execution Courses

Course Description

Overview

Explore the security vulnerabilities in Windows development environments through this conference talk from NULLCON Goa 2020. Discover how simply viewing or compiling untrusted source code can lead to remote code execution on a developer's workstation. Delve into the intricacies of Component Object Model (COM), type libraries, and Visual Studio's inner workings as the speaker demonstrates full exploit chains. Learn about the risks associated with common practices like downloading code from sharing platforms such as GitHub. Gain insights into securing development environments and understanding the potential dangers of interacting with untrusted code in integrated development environments for Windows.

Syllabus

COMpromise: remote code execution in Windows development environments | Stan Hegt | NULLCON Goa 2020


Taught by

nullcon

Related Courses

Bug Bounty In Hindi
YouTube CVE Series: Confluence RCE (CVE-2022-26134)
Cybrary Achieving Linux Kernel Code Execution Through a Malicious USB Device
Black Hat via YouTube Towards Discovering Remote Code Execution Vulnerabilities in Apple FaceTime
Black Hat via YouTube Browser Hacking With ANGLE
Hack In The Box Security Conference via YouTube