We Have You by the Gadgets

Explore the security vulnerabilities of Windows gadgets in this 55-minute conference talk from BruCON Security Conference. Delve into the composition, distribution, and weaknesses of the Windows gadget platform. Learn about potential attack vectors using JavaScript, CSS, and HTML in these default embedded applications. Discover techniques for creating malicious gadgets, exploiting legitimate ones, and understand the flaws found in published gadgets. Gain insights into why gadgets can be a more effective attack method than traditional executables.