Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Master advanced Windows kernel exploitation techniques through this comprehensive 14.5-hour course that demonstrates how to exploit a race condition vulnerability leading to a use-after-free in the Kernel Transaction Manager (KTM) component. Learn the systematic approach exploit developers should take when attacking previously unknown Windows kernel components, starting with binary diffing techniques to identify CVE-2018-8611 and progressing through complete exploitation development. Explore KTM fundamentals including objects, states, and transaction management while building practical skills through hands-on labs covering resource manager creation, transaction commits, and code analysis. Develop expertise in vulnerability analysis by understanding the TmRecoverResourceManager function, identifying the specific vulnerability and its patch, and learning to reach vulnerable code paths. Master race condition exploitation using WinDbg, understand KENLISTMENT object manipulation, and implement both heap spraying and heap feng shui techniques for reliable exploitation. Practice advanced memory manipulation strategies including pool manipulation for data control, delayed free bypass techniques, and exploitation methods with and without memory holes. Build detection mechanisms for successful race condition wins, develop strategies for escaping vulnerable loops, and implement address leak discovery techniques. Complete the exploitation chain by learning privilege escalation strategies, implementing arbitrary read/write primitives, and comparing different approaches including arbitrary increment techniques for achieving system-level access.
