In this talk, we will look into Windows Kernel Pool Overflow exploitation.
We will understand the concept of Kernel Heap Spraying and how to groom the Kernel Heap for effective exploitation of Kernel Pool Overflows.
This is one of the very challenging, vulnerability exploitation because Windows is implementing lots of meta data checks on Kernel Pool.
Ashfaq Ansari is the founder of HackSys Team code named "Panthera". He is a Security Researcher with experience in various aspects of Information Security. He has authored "HackSys Extreme Vulnerable Driver" and "Shellcode of Death". He has also written and published various whitepapers on low level software exploitation. His core interest lies in "Low Level Exploitation", "Reverse Engineering", "Program Analysis" and "Hybrid Fuzzing". He is a fanboy of Artificial Intelligence and Machine Learning. He is the chapter lead for null (Pune).
Starts at Saturday January 10 2015, 12:05 PM. The sessions runs for about 1 hour.