Hacking Livestream #28: Windows Kernel Debugging Part I
Artem "honorary_bot" Shishkin is a fan of Windows RE, debugging and low-level stuff. He's been using WinDbg for kernel debugging for several years now for fun, customizing BSODs, building Windows kernel source tree or boot dependencies graph. Sometimes he might also accidentally discover such things as SMEP bypass on Windows 8 or how to disable PatchGuard in runtime. Being a great fan of Intel and specifically VMX technology he maintains his own bicycle debugger based on a bare metal hypervisor.
Twitter handle: https://twitter.com/honorary_bot
Github: https://github.com/honorarybot/
Links from the stream:
Books:
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735648735
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735665877
https://www.amazon.com/Programming-Microsoft-Windows-Developer-Reference/dp/0735618038
https://www.amazon.com/Developing-Windows%C2%AE-Foundation-Developer-Reference/dp/0735623740
VirtualKD
http://virtualkd.sysprogs.org/
USB 3.0 debugging cable (example):
https://www.datapro.net/products/usb-3-0-super-speed-a-a-debugging-cable.html
Network card IDs for network debugging:
https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/supported-ethernet-nics-for-network-kernel-debugging-in-windows-10
Видео Hacking Livestream #28: Windows Kernel Debugging Part I канала GynvaelEN
Twitter handle: https://twitter.com/honorary_bot
Github: https://github.com/honorarybot/
Links from the stream:
Books:
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735648735
https://www.amazon.com/Windows-Internals-Part-Developer-Reference/dp/0735665877
https://www.amazon.com/Programming-Microsoft-Windows-Developer-Reference/dp/0735618038
https://www.amazon.com/Developing-Windows%C2%AE-Foundation-Developer-Reference/dp/0735623740
VirtualKD
http://virtualkd.sysprogs.org/
USB 3.0 debugging cable (example):
https://www.datapro.net/products/usb-3-0-super-speed-a-a-debugging-cable.html
Network card IDs for network debugging:
https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/supported-ethernet-nics-for-network-kernel-debugging-in-windows-10
Видео Hacking Livestream #28: Windows Kernel Debugging Part I канала GynvaelEN
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Hacking Livestream #70: Dumping a SNES cartridge
Hacking Livestream #22: CONFidence DS CTF 2017 (part 2)
Hacking Livestream #77: Sigreturn-oriented programming
Summer Gamedev Challenge 2017 Erratum
Hacking Livestream #30: Windows Kernel Debugging Part III
Hacking Livestream #39: VMs in anti-RE
Hacking Livestream #21: CONFidence DS CTF 2017
Just chatting (crashing cam in OBS with a piece of paper)
What's on my IT book shelves? (2024 edition)
Vlog #011: Operating Systems - books & resources
Gynvael's Hacking Livestream #89: Solving Teaser Dragon CTF 2019 Part 2
Hacking Livestream #61: Nanomites
#96: picoCTF 2019 (part 6)
Hacking Livestream #36: CHIP-8 VM Part III
Hacking Livestream #31: Windows Kernel Debugging Part IV
#92: picoCTF 2019 (part 2)
Hacking Livestream #44: NsJail with Robert Swiecki
Vlog #010: Dumping interpreter's history
Learning Rust Challenge! #8
Hacking Livestream #38: CHIP-8 Debugger - Part II
Vlog #009: Java faster than x86 asm?