Exploiting Windows COM - WinRT Services

Offered By: Black Hat via YouTube

Course Description

Overview

Explore the security vulnerabilities in Windows Component Object Model (COM) and Windows Runtime (WinRT) services in this 27-minute Black Hat conference talk. Dive into the extensive attack surfaces these widely-used technologies provide for hackers seeking Local Privilege Escalation (LPE), Remote Code Execution (RCE), and Sandbox Escape vulnerabilities. Learn from security researchers XueFeng Li and Zhiniang Peng as they discuss their findings of over 100 bugs in COM/WinRT services discovered within a year. Gain insights into cross-process communication vulnerabilities and potential security risks in UWP applications. Access the full abstract and presentation materials for a comprehensive understanding of exploiting Windows COM/WinRT services.

Syllabus

Exploiting Windows COM/WinRT ServicesExploiting Windows COM/WinRT Services

Taught by

Black Hat

Related Courses

Computer Security
Stanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network