Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore the intricate mechanisms of LSA (Local Security Authority) credential recovery on Windows systems through this 59-minute conference presentation. Delve into the design principles of LSA's authentication packages, moving beyond traditional reverse engineering approaches that relied on public symbols and older source code leaks. Examine how newer private symbol leaks for Windows 10 enable more accurate investigations with precise type information. Learn about both memory scanning and logical abuse techniques for credential recovery, understanding their practical applications and inherent limitations on modern Windows releases. Gain comprehensive insights into the feasibility of various credential recovery methods and develop a deeper understanding of how these techniques perform across different Windows versions.
