Completed
Improving our tradecraft
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Kernel Mode Threats and Practical Defenses
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 Why this talk
- 3 First generation kernel threats
- 4 Microsofts defenses
- 5 Boot Kits
- 6 Secure Boot
- 7 Dooku Threats
- 8 Double Pulsar
- 9 Hypervisor Code Integrity
- 10 Red vs Blue
- 11 Implant Design
- 12 Turla Driver Loader
- 13 Improving our tradecraft
- 14 Datadriven attacks
- 15 Code reuse attacks
- 16 Kernel stack hooking
- 17 Calling a function
- 18 Readwrite primitive
- 19 Demo
- 20 Blacklist of known exploitable drivers
- 21 How to hunt in the kernel
- 22 Page table remapping
- 23 Detecting double pulsar
- 24 Realtime detection
- 25 Weaknesses
- 26 Windows
- 27 Microsoft
- 28 Weaknesses Limitations
- 29 Recap
- 30 Windows Platform Security