Wlsi - Windows Local Shellcode Injection presented at Blackhat Europe 2006

by Cesar Cerrudo,

Tags: Security Exploitation

Summary : This talk is about a new technique to create 100% reliable local exploits for Windows operating systems, the technique uses a Windows operating systems design weaknesses that allow low privileged processes to insert data on almost any Windows processes no matter if they are running under higher privileges. We all know that local exploitation is much easier than remote exploitation but it has some difficulties. After a brief introduction and a description of the technique, a couple of samples will be provided so the audience will be able to write his/her own exploits.