YoVDO

What's in a Name? Exploring MojoBlob Registry and Service Side Dispatch

Offered By: OffensiveCon via YouTube

Tags

Windows Courses Exploit Development Courses Security Vulnerabilities Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the intricacies of Windows security mechanisms in this 27-minute conference talk from OffensiveCon23. Delve into the MojoBlob Registry, examining its code structure, service-side dispatch, and message validation processes. Gain insights into dispatch validators, request and response IDs, provider interfaces, and type confusion. Learn about potential security implications, including the classic blob registry and ways to disable message validation. Understand how these components interact and impact Windows system security through practical demonstrations and expert analysis.

Syllabus

Intro
Story
Overview
What is Mojo
Blob Registry
Code Structure
Service Side Dispatch
Message Dispatch
Return Types
Dispatch
Validator
Request ID
Response ID
Provider Interface
Type Confusion
Demo
Quote
Handles
Lunch time
Disable message validation
Classic blob registry


Taught by

OffensiveCon

Related Courses

CNIT 127: Exploit Development
CNIT - City College of San Francisco via Independent Reverse Engineering and Exploit Development
Udemy Penetration Testing: Advanced Kali Linux
LinkedIn Learning Linux x86 Assembly and Shellcoding
Udemy Python : Sıfırdan İleri Seviyeye - Etik Hacker Örnekleriyle
Udemy