YoVDO

Kernel Exploit Hunting and Mitigation

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Cybersecurity Courses Microsoft Office 365 Courses Malware Analysis Courses Dynamic Analysis Courses Vulnerability Research Courses Windows Kernel Courses

Course Description

Overview

Explore kernel exploit hunting and mitigation techniques in this conference talk from the Hack In The Box Security Conference. Dive into the world of cyberwarfare and multi-level attacks, focusing on Windows kernel vulnerabilities exploited by APT attackers and botnet operators. Examine real-world examples of malware families utilizing kernel exploits, including Dyre, Turla, and Necurs. Learn how to proactively discover effective samples with kernel exploits through dynamic analysis systems. Gain insights into analyzing kernel exploits that bypass HIPS detection and prevention methodologies. Witness a demonstration of a prototype tool for effective kernel exploit mitigation. Benefit from the speakers' extensive experience in malware analysis, reverse engineering, and Windows kernel vulnerability research.

Syllabus

Introduction
Wayne Low
Agenda
User Account Control
Primitive
Limitations
Criminal Exploits
How To Identify What Web
Case Study
Despite
Despite Workflow
EOP Explore
Integrity Level


Taught by

Hack In The Box Security Conference

Related Courses

HARES - Hardened Anti Reverse Engineering System
SyScan360 via YouTube Veni, No Vidi, No Vici - Attacks on ETW Blind EDR Sensors
Black Hat via YouTube Discovering 20 Year Old Vulnerabilities in Modern Windows Kernel
Black Hat via YouTube Function Overrides - From a Security Mitigation to a Full-Fledged Performance Feature
Recon Conference via YouTube Social Engineering the Windows Kernel - Finding and Exploiting Token Handling Vulnerabilities
Black Hat via YouTube