Hacking Windows Vista presented at ShmooCon 2008

by Dan Griffin,

Tags: Security Development Testing

Summary : "Hacking Windows Vista" will demo various security tools I’ve been working on, addressing both attack and defense: a. Smart cards - a tool for fuzz testing middleware b. Crypto - a tool for adding new cipher support (my example uses Twofish) to Windows c. Firewall - I’ll show why the default rule set for a new application is insecure, and a tool that fixes it d. IPsec - I’ll show an IPv6-compatible command-line debugging tool which dumps out various negotiated parameters between two peers
Dan Griffin is a software security consultant in Seattle, WA. He previously spent seven years at Microsoft on the Windows Security development team. A list of publications is available at http://www.jwsecure.com/articles.shtml.