eBPF ELFs JMPing Through the Windows
Offered By: Ekoparty Security Conference via YouTube
Course Description
Overview
Explore the first public analysis of eBPF for Windows implementation for security vulnerabilities in this 42-minute conference talk from Ekoparty 2022. Delve into the capabilities and security model of eBPF for Windows, followed by an in-depth examination of its design and attack surface, including the eBPF API, trusted static verifier, JIT engine, and kernel implementation of trace hooks and telemetry providers. Discover uncovered vulnerabilities across multiple layers, with demonstrations of fuzzing Windows eBPF components and real-time bug discovery. Learn from Richard Johnson, a seasoned computer security specialist with over 20 years of experience, currently serving as Senior Principal Security Researcher at Trellix and Chief Research Officer at Fuzzing IO.
Syllabus
Richard Johnson - eBPF ELFs JMPing Through the Windows - Ekoparty 2022
Taught by
Ekoparty Security Conference
Related Courses
Blockchain Scalability and its Foundations in Distributed SystemsThe University of Sydney via Coursera Don's Introduction to Ethical Hacking for Beginners
Udemy Hacking und Netzwerkanalyse mit Wireshark - Der Komplettkurs
Udemy Penetration Testing of Identity, Authentication and Authorization Mechanism
Pluralsight ASP.NET MVC 5 Identity: Authentication and Authorization
LinkedIn Learning