This year’s Black Hat US saw a number of quite interesting talks in the context of Windows or Active Directory Security. For those of you too lazy to search for themselves 😉 and for our own Windows/AD Sec team (who couldn’t send anyone to Vegas due to heavy project load) I’ve compiled a little list of those.
Paul Stone & Alex Chapman: WSUSPect – Compromising the Windows Enterprise via Windows Update
Whitepaper here. (Attention: on the BH website there’s an older this. the above link leads to the latest one).
There’s no slides/whitepapers yet for these two:
Alex Ionescu: Battle of the SKM and IUM: How Windows 10 Rewrites OS Architecture (I sat in that one. was quite interesting stuff).
James Forshaw: Social Engineering the Windows Kernel: Finding and Exploiting Token Handling Vulnerabilities.
You might check the BH Briefings website for updates once those become available.
Have a great weekend everybody