Dailydave mailing list archives
non-SYSTEM to SYSTEM in one click or less
From: Dave Aitel <dave () immunityinc com>
Date: Mon, 12 Mar 2007 11:28:54 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Next week is Shmoocon - and I'll be there with whatever the latest build of SILICA is in my pocket. Feel free to pull me aside for a quick demo. Also, don't forget to submit your talks to Syscan! I'm going to miss Blackhat Europe, but Kostya won't. . . http://blackhat.com/html/bh-europe-07/bh-eu-07-speakers.html has some good talks - I'm sure it has many good talks, but these are the ones I already know a bit about. Software Virtualization Based Rootkits Sun Bing, Research Scientist I saw him talk at Xcon, and it was one of my favorites. He really sums up how virtual machines work in a way that's very understandable. Macro-Reliability Kostya Kortchinsky, Immunity, Inc. There's a lot of very important things that go into making exploits work against both Traditional Chinese Windows and English Windows. First you have to remotely detect what your target is running. . . Anyways, it's a good talk. Be there or be square. :> Kernel Wars Joel Eriksson, CTO of Bitsec Karl Janmar, Security Researcher, Bitsec Christer Öberg, Security Researcher, Bitsec I just finished converting Joel Eriksson's exploit into CANVAS/MOSDEF and I have to admit, it was a fun one. You can grab it now from Immunity Partners. I can confirm, via my testing, that it is extremely reliable. Assuming it gets cleaned up enough to go into CANVAS by the 1st, that means every CANVAS customer will have the ability to go from non-SYSTEM to SYSTEM on Windows 2000 and XP via a nice unpatched bug. Gotta love that. :> - -dave -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFF9XGtB8JNm+PA+iURAsMvAJ9fDfPb8WzPzJD7tP/e7mqcl5eMqwCffwDS oHNXwBDf4tXdoYlkFNeRuN8= =/xuT -----END PGP SIGNATURE----- _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- non-SYSTEM to SYSTEM in one click or less Dave Aitel (Mar 12)
- Re: non-SYSTEM to SYSTEM in one click or less Joel Eriksson (Mar 13)