Reverse Engineering and Bug Hunting on KMDF Drivers

Reverse Engineering and Bug Hunting on KMDF Drivers

44CON Information Security Conference via YouTube Direct link

Conclusions (2/2)

21 of 21

21 of 21

Conclusions (2/2)

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Reverse Engineering and Bug Hunting on KMDF Drivers

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Reverse Engineering & Bug Hunting on KMDF Drivers
  2. 2 Different Driver Models
  3. 3 Driver and Device Objects
  4. 4 Creating the Device
  5. 5 IRP Major Function Codes
  6. 6 Basic WDM Driver
  7. 7 Talking to the Driver
  8. 8 Interrupt Request Packets
  9. 9 Stack Locations
  10. 10 Buffer Access Methods (1/3)
  11. 11 IOCTL Code
  12. 12 KMDF Overview
  13. 13 A basic KMDF driver (3/3)
  14. 14 Using Device Interfaces
  15. 15 KMDF and Buffer Access
  16. 16 Control Device Objects (1/2)
  17. 17 Type of Issues • Unsanitized data
  18. 18 Kernel Pointers Leakage • Synaptics Touchpad Win64 Driver
  19. 19 Finding KMDF drivers
  20. 20 Check your drivers!
  21. 21 Conclusions (2/2)

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.