Explore the security vulnerabilities of Windows gadgets in this 39-minute conference talk from Black Hat USA 2012. Delve into the world of sidebar gadgets, their composition using JS, CSS, and HTML, and their default integration into the Windows operating system. Discover how these seemingly innocuous applications can be exploited for malicious purposes. Learn about the process of creating and distributing gadgets, and uncover their inherent weaknesses. Gain insights into the researchers' findings on crafting malicious gadgets, manipulating legitimate ones, and the various flaws discovered in published gadgets. Understand why gadgets can be a more insidious attack vector than traditional executables, and how they can be leveraged to compromise system security.
Overview
Syllabus
Black Hat USA 2012 - We Have You by the Gadgets
Taught by
Black Hat