YoVDO

What's in a Name? Exploring MojoBlob Registry and Service Side Dispatch

Offered By: OffensiveCon via YouTube

Tags

Windows Courses Exploit Development Courses Security Vulnerabilities Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the intricacies of Windows security mechanisms in this 27-minute conference talk from OffensiveCon23. Delve into the MojoBlob Registry, examining its code structure, service-side dispatch, and message validation processes. Gain insights into dispatch validators, request and response IDs, provider interfaces, and type confusion. Learn about potential security implications, including the classic blob registry and ways to disable message validation. Understand how these components interact and impact Windows system security through practical demonstrations and expert analysis.

Syllabus

Intro
Story
Overview
What is Mojo
Blob Registry
Code Structure
Service Side Dispatch
Message Dispatch
Return Types
Dispatch
Validator
Request ID
Response ID
Provider Interface
Type Confusion
Demo
Quote
Handles
Lunch time
Disable message validation
Classic blob registry


Taught by

OffensiveCon

Related Courses

操作系统原理(Operating Systems)
Peking University via Coursera 工程圖學 2D CAD 專題
National Taiwan University via Coursera IT Support: Troubleshooting Microsoft Office
Microsoft via edX Operating Systems and You: Becoming a Power User
Google via Coursera How to Install Android Studio
Udacity