Explore a critical vulnerability discovered in popular security products that allows threat actors to bypass Windows protections. Delve into the research that uncovered this issue across multiple Anti-Virus (AV) products and potentially other security and non-security related software. Learn about a second malpractice in intrusive products that further simplifies exploit execution. Discover the coordinated effort with vendors to address and patch these vulnerabilities. Gain insights into the detailed description of the vulnerability and its impact. Receive access to a tool for validating system security against this vulnerability. This 43-minute conference talk from Security BSides San Francisco provides valuable information for cybersecurity professionals and enthusiasts interested in understanding and mitigating potential weaknesses in security software.
Overview
Syllabus
BSidesSF 2016 - Abusing Security Products to Bypass Windows Protections (Tomer Bitton, Udi Yavo)
Taught by
Security BSides San Francisco
Related Courses
-
Sedating the Watchdog - Abusing Security Products to Bypass Windows Protections
-
Meltdown's Aftermath - Leveraging KVA Shadow To Bypass Security Protections
-
A Tale of One Software Bypass of Windows 8 Secure Boot
-
AtomBombing - Injecting Code Using Windows’ Atoms
-
Who's Breaking into Your Garden? - iOS & OS X Malware You May Not Know
-
Case Study in Using Bad Malware Design Against Attackers
