Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

A View into ALPC-RPC - Advanced Local Procedure Call and Remote Procedure Call

Cooper via YouTube

Overview

Explore the intricacies of Advanced Local Procedure Call (ALPC) and its application in Remote Procedure Call (RPC) on Windows systems in this 46-minute conference talk from Hack.lu 2017. Delve into the core structures and APIs of ALPC, and discover how RPC-over-ALPC functions. Learn about the speakers' methodology for vulnerability hunting using a custom full-Python implementation of a simple RPC client. Gain insights into real-world security implications as the presenters reveal an UAC bypass and a Local Privilege Escalation discovered during their research. Presented by Clement Rouault, a Python enthusiast with expertise in reverse engineering and Windows internals, and Thomas Imbert, a security researcher specializing in reverse engineering, virtualization, and forensics.

Syllabus

Hack.lu 2017 A view into ALPC-RPC by Clement Rouault and Thomas Imbert

Taught by

Cooper

Reviews

Start your review of A View into ALPC-RPC - Advanced Local Procedure Call and Remote Procedure Call

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.