Bochspwn Reloaded: Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking

preview_player
Показать описание
In kernel-mode, buffer overflows and similar memory corruption issues in the internal logic are usually self-evident and can be detected with a number of static and dynamic approaches. On the contrary, flaws directly related to interactions with user-mode clients tend to be more subtle, and can survive unnoticed for many years, while still providing primitives similar to the classic bugs.

By Mateusz Jurczyk

Full Abstract & Presentation Materials:
  1. Black Hat
  2. Black Hat 2017
  3. Black Hat USA
  4. Black Hat USA 2017
  5. Information Security
  6. Black Hat
Рекомендации по теме
Bochspwn Reloaded: Detecting 0:53:49

Bochspwn Reloaded: Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking

Bochspwn Reloaded Detecting 0:53:49

Bochspwn Reloaded Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking

RECON 2017 - 1:08:07

RECON 2017 - Bochspwn Reloaded Detecting Kernel Memory Disclosure with x86 Emulation (j00ru)

Bochspwn Reloaded 0:53:49

Bochspwn Reloaded Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking

j00ru Bochspwn Reloaded 1:08:07

j00ru Bochspwn Reloaded Detecting Kernel Memory Disclosure with x86 Emulation and Tain't Tracki...

NDSS 2021 Detecting 0:14:05

NDSS 2021 Detecting Kernel Memory Leaks in Specialized Modules with Ownership Reasoning

Black Hat USA 0:55:58

Black Hat USA 2013 - Bochspwn: Identifying 0-days via System-wide Memory Access Pattern Analysis

KLEAK Practical Kernel 0:28:39

KLEAK Practical Kernel Memory Disclosure Detection

Unix & Linux: 0:01:33

Unix & Linux: Kernel memory leak detection

Dive Into Apple 0:39:02

Dive Into Apple IO80211Family Vol. 2

36C3 - KTRW: 0:54:52

36C3 - KTRW: The journey to build a debuggable iPhone

Leaking Windows Kernel 0:24:03

Leaking Windows Kernel Pointers - WanderingGlitch

REcon 2015 - 1:05:48

REcon 2015 - One font vulnerability to rule them all (j00ru)

Design Pitfalls in 0:25:44

Design Pitfalls in Commercial Mini-Programs on Android and iOS

expensive reloaded moment 0:00:20

expensive reloaded moment

Dziękuje 🩵 0:00:16

Dziękuje 🩵

Writing Bad @$$ 0:51:39

Writing Bad @$$ Malware For OS X

Workshop: Linux Kernel 1:02:28

Workshop: Linux Kernel Exploitation 101 - Part 1

Remotely Compromising iOS 0:37:58

Remotely Compromising iOS via Wi-Fi and Escaping the Sandbox

A kernel in 0:43:14

A kernel in a library Genode's custom kernel approach

Boostv64 Cheat privado 0:01:54

Boostv64 Cheat privado para CSGO

Black Hat USA 0:50:02

Black Hat USA 2018 - Decompiler Internals Microcode

Black Hat USA 0:53:16

Black Hat USA 2017 Remotely Compromising Android and iOS via Bug in Broadcom's Wi Fi Chipsets

peter-bochs - how 0:31:37

peter-bochs - how to view GDT

Комментарии
Автор

Interesting talk and thanks for sharing Mateusz...

ddvelzen