Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Windows Systems and Code Signing Protection - Hack.lu 2016

Cooper via YouTube

Start learning Write review
Coursera Ad

Google, IBM & Meta Certificates — 40% Off for a Limited Time

Learn More → GetSmarter Ad

Most AI Pilots Fail to Scale. MIT Sloan Teaches You Why — and How to Fix It

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the intricacies of Microsoft's code signing mechanism (authenticode) for Windows systems in this 31-minute conference talk. Delve into the kernel implications and impacts on driver development, uncovering how rootkit developers have found ways to bypass this protection. Examine techniques used by notorious rootkits like Derusbi, Uroburos, and GrayFish to circumvent driver signature requirements. Conclude with an analysis of user-land security, focusing on the new library injection protection based on code signing implemented in Windows 10 TH2, with special attention to the Edge process.

Syllabus

Hack.lu 2016 Windows systems & code signing protection by Paul Rascagnères

Taught by

Cooper

Reviews

Start your review of Windows Systems and Code Signing Protection - Hack.lu 2016

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.