Загрузка страницы
Все видеоНовые видеоПопулярные видеоКатегории видео

Windows Offender: Reverse Engineering Windows Defender's Antivirus Emulator

In this presentation, we'll look at Defender's emulator for analysis of potentially malicious Windows PE binaries on the endpoint. To the best of my knowledge, there has never been a conference talk or publication on reverse engineering the internals of any antivirus binary emulator before.

By Alexei Bulazel

Full abstract and materials: https://www.blackhat.com/us-18/briefings/schedule/#windows-offender-reverse-engineering-windows-defenders-antivirus-emulator-9981

Видео Windows Offender: Reverse Engineering Windows Defender's Antivirus Emulator канала Black Hat
Показать
Комментарии отсутствуют
Введите заголовок:

Введите адрес ссылки:

Введите адрес видео с YouTube:

Зарегистрируйтесь или войдите с
Информация о видео
15 января 2020 г. 6:27:40
00:48:48
Black Hat
Теги
Правообладателям
Жалоба
Комментарии
Другие видео канала
Scammers Who Scam Scammers, Hackers Who Hack Hackers: Exploring a Sub-economy on Cybercrime ForumsScammers Who Scam Scammers, Hackers Who Hack Hackers: Exploring a Sub-economy on Cybercrime ForumsRet2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated CacheRet2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated CacheAttack on Titan M, Reloaded: Vulnerability Research on a Modern Security ChipAttack on Titan M, Reloaded: Vulnerability Research on a Modern Security ChipAEPIC Leak: Architecturally Leaking Uninitialized Data from the MicroarchitectureAEPIC Leak: Architecturally Leaking Uninitialized Data from the MicroarchitectureAttacks From a New Front Door in 4G & 5G Mobile NetworksAttacks From a New Front Door in 4G & 5G Mobile NetworksAndroid Universal Root: Exploiting Mobile GPU / Command Queue DriversAndroid Universal Root: Exploiting Mobile GPU / Command Queue DriversAAD Joined Machines - The New Lateral MovementAAD Joined Machines - The New Lateral MovementA Journey Into Fuzzing WebAssembly Virtual MachinesA Journey Into Fuzzing WebAssembly Virtual MachinesA New Trend for the Blue Team: Using a Symbolic Engine to Detect Evasive Forms of Malware/RansomwareA New Trend for the Blue Team: Using a Symbolic Engine to Detect Evasive Forms of Malware/RansomwareMonitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021Monitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021New Memory Forensics Techniques to Defeat Device Monitoring MalwareNew Memory Forensics Techniques to Defeat Device Monitoring MalwareThe 8th Annual Black Hat USA NOC ReportThe 8th Annual Black Hat USA NOC ReportBetter Privacy Through Offense: How To Build a Privacy Red TeamBetter Privacy Through Offense: How To Build a Privacy Red TeamUnlimited Results: Breaking Firmware Encryption of ESP32-V3Unlimited Results: Breaking Firmware Encryption of ESP32-V3Backdooring and Hijacking Azure AD Accounts by Abusing External IdentitiesBackdooring and Hijacking Azure AD Accounts by Abusing External IdentitiesAutomatic Protocol Reverse EngineeringAutomatic Protocol Reverse EngineeringPwning Cloud Vendors with Untraditional PostgreSQL VulnerabilitiesPwning Cloud Vendors with Untraditional PostgreSQL VulnerabilitiesKeynote: Black Hat at 25: Where Do We Go from Here?Keynote: Black Hat at 25: Where Do We Go from Here?Pre-Stuxnet, Post-Stuxnet: Everything Has Changed, Nothing Has ChangedPre-Stuxnet, Post-Stuxnet: Everything Has Changed, Nothing Has ChangedProcess Injection: Breaking All macOS Security Layers With a Single VulnerabilityProcess Injection: Breaking All macOS Security Layers With a Single VulnerabilityBrokenMesh: New Attack Surfaces of Bluetooth MeshBrokenMesh: New Attack Surfaces of Bluetooth Mesh
Статистика портала
Яндекс.Метрика
© 2008-2024 «Информационно-развлекательный портал города Верхняя Салда»
| Карта портала | Реклама | Контакты | Сообщить об ошибке | Соглашения
salda.ws salda.ws@mail.ru
Сейчас на сайте: 512 Статистика портала