Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

The COW - Container On Windows Who Escaped the Silo

Black Hat via YouTube

Start learning Write review
Coursera Ad

Google, IBM & Microsoft Certificates — All in One Plan

Learn More → DataCamp Ad

AI Engineer - Learn how to integrate AI into software applications

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the security implications of Windows process-isolated containers in this Black Hat conference talk. Delve into the foundations of cloud services, focusing on virtualization and container isolation. Examine how Windows isolates container processes and filesystems, and prevents containers from executing potentially harmful syscalls. Investigate the implementation of Ntoskrnl using server silos and job objects. Discover answers to critical questions about container isolation and potential attacker capabilities. Learn about past vulnerabilities, anti-system debugging techniques, UEFI, and NVM. Conclude with a demonstration and discussion of mitigation strategies for enhanced container security.

Syllabus

Introduction
Containers
User flag
Past vulnerabilities
Trivia
AntiSystem Debug
UEFI
NVM
Demo
Mitigation

Taught by

Black Hat

Reviews

Start your review of The COW - Container On Windows Who Escaped the Silo

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.