A View into ALPC-RPC - Advanced Local Procedure Call and Remote Procedure Call
Offered By: Cooper via YouTube
Course Description
Overview
Explore the intricacies of Advanced Local Procedure Call (ALPC) and its application in Remote Procedure Call (RPC) on Windows systems in this 46-minute conference talk from Hack.lu 2017. Delve into the core structures and APIs of ALPC, and discover how RPC-over-ALPC functions. Learn about the speakers' methodology for vulnerability hunting using a custom full-Python implementation of a simple RPC client. Gain insights into real-world security implications as the presenters reveal an UAC bypass and a Local Privilege Escalation discovered during their research. Presented by Clement Rouault, a Python enthusiast with expertise in reverse engineering and Windows internals, and Thomas Imbert, a security researcher specializing in reverse engineering, virtualization, and forensics.
Syllabus
Hack.lu 2017 A view into ALPC-RPC by Clement Rouault and Thomas Imbert
Taught by
Cooper
Related Courses
The RedTeam Blueprint - A Unique Guide To Ethical HackingUdemy Indicators of Compromise - From Malware Analysis to Eradication
44CON Information Security Conference via YouTube Counterfeiting the Pipes with FakeNet 2.0 - Part 2
Black Hat via YouTube Advanced Process Injection Techniques
NorthSec via YouTube Hypervisors in Your Toolbox - Monitoring and Controlling System Events with HyperPlatform
nullcon via YouTube