Overview
Dive into the world of Windows drivers in this 50-minute conference talk presented by Graham Sutherland at the 44CON Information Security Conference. Explore the intricacies of Windows driver development, from setting up a virtual environment to handling major functions and custom control codes. Learn about device object creation, buffered I/O, and memory access techniques. Discover how to troubleshoot driver crashes and gain valuable insights into essential tools and resources for mastering Windows driver development. Perfect for developers and security professionals looking to enhance their understanding of low-level Windows operations.
Syllabus
Intro
GREETINGS
GENERAL SETUP
REQUIRED TOOLS • Virtual Machine - Virtual serial ports
ENVIRONMENT [1/3]
PICK A DRIVER
DEVICE OBJECT CREATION
MAJOR FUNCTION HANDLERS
BUFFERED I/O
CUSTOM CONTROL CODES
I/O CONTROL CODES
EXAMPLE IOCTL DISPATCH
EXAMPLE USERMODE CALL
MEMORY ACCESS
MY DRIVER CRASHED!
LEARNING RESOURCES
Taught by
44CON Information Security Conference