Hacking Livestream #28: Windows Kernel Debugging Part I
Artem "honorary_bot" Shishkin is a fan of Windows RE, debugging and low-level stuff. He's been using WinDbg for kernel debugging for several years now for fun, customizing BSODs, building Windows kernel source tree or boot dependencies graph. Sometimes he might also accidentally discover such things as SMEP bypass on Windows 8 or how to disable PatchGuard in runtime. Being a great fan of Intel and specifically VMX technology he maintains his own bicycle debugger based on a bare metal hypervisor.
Twitter handle: https://twitter.com/honorary_bot
Github: https://github.com/honorarybot/
Links from the stream:
Books:
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735648735
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735665877
https://www.amazon.com/Programming-Microsoft-Windows-Developer-Reference/dp/0735618038
https://www.amazon.com/Developing-Windows%C2%AE-Foundation-Developer-Reference/dp/0735623740
VirtualKD
http://virtualkd.sysprogs.org/
USB 3.0 debugging cable (example):
https://www.datapro.net/products/usb-3-0-super-speed-a-a-debugging-cable.html
Network card IDs for network debugging:
https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/supported-ethernet-nics-for-network-kernel-debugging-in-windows-10
Видео Hacking Livestream #28: Windows Kernel Debugging Part I канала GynvaelEN
Twitter handle: https://twitter.com/honorary_bot
Github: https://github.com/honorarybot/
Links from the stream:
Books:
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735648735
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735665877
https://www.amazon.com/Programming-Microsoft-Windows-Developer-Reference/dp/0735618038
https://www.amazon.com/Developing-Windows%C2%AE-Foundation-Developer-Reference/dp/0735623740
VirtualKD
http://virtualkd.sysprogs.org/
USB 3.0 debugging cable (example):
https://www.datapro.net/products/usb-3-0-super-speed-a-a-debugging-cable.html
Network card IDs for network debugging:
https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/supported-ethernet-nics-for-network-kernel-debugging-in-windows-10
Видео Hacking Livestream #28: Windows Kernel Debugging Part I канала GynvaelEN
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Hacking Livestream #70: Dumping a SNES cartridgeHacking Livestream #22: CONFidence DS CTF 2017 (part 2)Hacking Livestream #77: Sigreturn-oriented programmingSummer Gamedev Challenge 2017 ErratumHacking Livestream #30: Windows Kernel Debugging Part IIIHacking Livestream #39: VMs in anti-REHacking Livestream #21: CONFidence DS CTF 2017Just chatting (crashing cam in OBS with a piece of paper)What's on my IT book shelves? (2024 edition)Vlog #011: Operating Systems - books & resourcesGynvael's Hacking Livestream #89: Solving Teaser Dragon CTF 2019 Part 2Hacking Livestream #61: Nanomites#96: picoCTF 2019 (part 6)Hacking Livestream #36: CHIP-8 VM Part IIIHacking Livestream #31: Windows Kernel Debugging Part IV#92: picoCTF 2019 (part 2)Hacking Livestream #44: NsJail with Robert SwieckiVlog #010: Dumping interpreter's historyLearning Rust Challenge! #8Hacking Livestream #38: CHIP-8 Debugger - Part IIVlog #009: Java faster than x86 asm?