Intercepting Windows Printing by Modifying GDI Subsystem

•Descargar como PPT, PDF•

0 recomendaciones•1,322 vistas

Positive Hack Days

Tecnología Empresariales

Intercepting Windows Printing by Modifying GDI Subsystem by Artyom Shishkin, Positive Technologies

What for? ,[object Object],[object Object],[object Object]

What do we have ? ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Driver components ,[object Object],[object Object],[object Object],[object Object],[object Object]

Using XSS ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Spooler API ,[object Object],[object Object],[object Object],[object Object]

GDI API ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Inside GDI ,[object Object],[object Object]

Profit ,[object Object],[object Object],[object Object]

GDI Printing ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Thank you for your attention ! [email_address]

Más contenido relacionado

La actualidad más candente

Incorporating PowerShell into your Arsenal with PS>Attackjaredhaight

Composer Tutorial (PHP Hampshire Sept 2013)James Titcumb

Introducing PS>Attack: An offensive PowerShell toolkitjaredhaight

Defending Your NetworkAdam Getchell

Pwning with powershelljaredhaight

Owning computers without shell access 2Royce Davis

BlueHat v18 || Linear time shellcode detection using state machines and opera...BlueHat Security Conference

BlueHat v18 || The matrix has you - protecting linux using deceptionBlueHat Security Conference

Owning computers without shell access darkRoyce Davis

Three Years of Lessons Running Potentially Malicious Code Inside ContainersBen Hall

Nginx warheadSergey Belov

NiktoSorina Chirilă

BlueHat v18 || Massive scale usb device driver fuzz without deviceBlueHat Security Conference

Testing Web Apps With Scripting Language - Mark Rees, Century SoftwareLinuxmalaysia Malaysia

Burp Suite StarterFadi Abdulwahab

BettercapRajivarnan (Rajiv)

WebSockets Everywhere: the Future Transport Protocol for Everything (Almost)Ericom Software

Denial of service attack part 2Kaustubh Padwad

Talk about Ansible and Infrastructure as CodeSATOSHI TAGOMORI

TakeDownCon Rocket City: WebShells by Adrian CrenshawEC-Council

La actualidad más candente (20)

Incorporating PowerShell into your Arsenal with PS>Attack

Composer Tutorial (PHP Hampshire Sept 2013)

Introducing PS>Attack: An offensive PowerShell toolkit

Defending Your Network

Pwning with powershell

Owning computers without shell access 2

BlueHat v18 || Linear time shellcode detection using state machines and opera...

BlueHat v18 || The matrix has you - protecting linux using deception

Owning computers without shell access dark

Three Years of Lessons Running Potentially Malicious Code Inside Containers

Nginx warhead

Nikto

BlueHat v18 || Massive scale usb device driver fuzz without device

Testing Web Apps With Scripting Language - Mark Rees, Century Software

Burp Suite Starter

Bettercap

WebSockets Everywhere: the Future Transport Protocol for Everything (Almost)

Denial of service attack part 2

Talk about Ansible and Infrastructure as Code

TakeDownCon Rocket City: WebShells by Adrian Crenshaw

Similar a Intercepting Windows Printing by Modifying GDI Subsystem

Artyom Shishkin - Printing interception via modifying Windows GDIDefconRussia

ab-initio-training basics and architecturesaipriyacoool

JIT Spraying Never Dies - Bypass CFG By Leveraging WARP Shader JIT Spraying.pdfSamiraKids

Shape12 6pslulli

Virtual Network Computing Based Droid desktopIOSR Journals

Lecture01Xafran

3 App Compat Win7llangit

An Introduction To Androidnatdefreitas

Intro to CudaDavid Hauck

extend-existing-applications-with-the-leadtools-virtual-printer-sdkGabriel Smith

A Gentle Introduction to GPU Computing by Armen DonigianData Con LA

Introduction.pptxSUDHAKAR S

Porting and Maintaining your C++ Game on Android without losing your mindBeMyApp

Proyecto de microcontroladoresCarlos Molina

Ipc clipboard and data copyVinoth Raj

ComputerCAFE91

OpenGL Based Testing Tool Architecture for Exascale ComputingCSCJournals

CS 354 IntroductionMark Kilgard

3D Programming Basics: WebGLGlobant

Taking Your FDM Application to the Next Level with Advanced ScriptingAlithya

Similar a Intercepting Windows Printing by Modifying GDI Subsystem (20)

Artyom Shishkin - Printing interception via modifying Windows GDI

ab-initio-training basics and architecture

JIT Spraying Never Dies - Bypass CFG By Leveraging WARP Shader JIT Spraying.pdf

Shape12 6

Virtual Network Computing Based Droid desktop

Lecture01

3 App Compat Win7

An Introduction To Android

Intro to Cuda

extend-existing-applications-with-the-leadtools-virtual-printer-sdk

A Gentle Introduction to GPU Computing by Armen Donigian

Introduction.pptx

Porting and Maintaining your C++ Game on Android without losing your mind

Proyecto de microcontroladores

Ipc clipboard and data copy

Computer

OpenGL Based Testing Tool Architecture for Exascale Computing

CS 354 Introduction

3D Programming Basics: WebGL

Taking Your FDM Application to the Next Level with Advanced Scripting

Más de Positive Hack Days

Инструмент ChangelogBuilder для автоматической подготовки Release NotesPositive Hack Days

Как мы собираем проекты в выделенном окружении в Windows DockerPositive Hack Days

Типовая сборка и деплой продуктов в Positive TechnologiesPositive Hack Days

Аналитика в проектах: TFS + QlikPositive Hack Days

Использование анализатора кода SonarQubePositive Hack Days

Развитие сообщества Open DevOps CommunityPositive Hack Days

Методика определения неиспользуемых ресурсов виртуальных машин и автоматизаци...Positive Hack Days

Автоматизация построения правил для ApproofPositive Hack Days

Мастер-класс «Трущобы Application Security»Positive Hack Days

Формальные методы защиты приложенийPositive Hack Days

Эвристические методы защиты приложенийPositive Hack Days

Теоретические основы Application SecurityPositive Hack Days

От экспериментального программирования к промышленному: путь длиной в 10 летPositive Hack Days

Уязвимое Android-приложение: N проверенных способов наступить на граблиPositive Hack Days

Требования по безопасности в архитектуре ПОPositive Hack Days

Формальная верификация кода на языке СиPositive Hack Days

Механизмы предотвращения атак в ASP.NET CorePositive Hack Days

SOC для КИИ: израильский опытPositive Hack Days

Honeywell Industrial Cyber Security Lab & Services CenterPositive Hack Days

Credential stuffing и брутфорс-атакиPositive Hack Days

Más de Positive Hack Days (20)

Инструмент ChangelogBuilder для автоматической подготовки Release Notes

Как мы собираем проекты в выделенном окружении в Windows Docker

Типовая сборка и деплой продуктов в Positive Technologies

Аналитика в проектах: TFS + Qlik

Использование анализатора кода SonarQube

Развитие сообщества Open DevOps Community

Методика определения неиспользуемых ресурсов виртуальных машин и автоматизаци...

Автоматизация построения правил для Approof

Мастер-класс «Трущобы Application Security»

Формальные методы защиты приложений

Эвристические методы защиты приложений

Теоретические основы Application Security

От экспериментального программирования к промышленному: путь длиной в 10 лет

Уязвимое Android-приложение: N проверенных способов наступить на грабли

Требования по безопасности в архитектуре ПО

Формальная верификация кода на языке Си

Механизмы предотвращения атак в ASP.NET Core

SOC для КИИ: израильский опыт

Honeywell Industrial Cyber Security Lab & Services Center

Credential stuffing и брутфорс-атаки

Último

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Angeliki Cooney

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Zilliz

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...apidays

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfOrbitshub

Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1

Elevate Developer Efficiency & build GenAI Application with Amazon QBhuvaneswari Subramani

WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays

TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingEdi Saputra

FWD Group - Insurer Innovation Award 2024The Digital Insurer

[BuildWithAI] Introduction to Gemini.pdfSandro Moreira

Six Myths about Ontologies: The Basics of Formal Ontologyjohnbeverley2021

Architecting Cloud Native ApplicationsWSO2

Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...apidays

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProduct Anonymous

Understanding the FAA Part 107 License ..Christopher Logan Kennedy

DBX First Quarter 2024 Investor PresentationDropbox

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh