Learn EDR Internals: Research & Development From The Masters
Pass the PMP® Exam on Your First Try — Expert-Led Training
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore the inner workings of Blue Coat ProxySG systems in this 50-minute Black Hat conference talk. Delve into the proprietary SG OS running on commodity Intel hardware, commonly used for web traffic proxying and filtering in large corporations. Gain insights into OS mechanisms, file system internals, and security features. Learn about the boot sequence, file structure, memory organization, and debugging tools. Examine the administration interface and potential exploitability. Discover security enhancements and methods for gaining access to these systems. Engage with a comprehensive analysis that sheds light on this widely deployed yet understudied technology.
Syllabus
Introduction
Overview
Blue Coat Proxy SG
Goal of the study
Proxy SG
File System
Boot Sequence
File Structure
CPD
CFS
Registry
Binary
Open Source
How does it work
Memory organization
Tools
Debugging
CAG
GDB
Application Security
Administration Interface
Exploitability
Conclusion
Security Enhancements
Questions
Getting Access
Feed Data
Taught by
Black Hat