Andrew Ruddick
@aruddick.bsky.social
Breaking software. Security Researcher @ Microsoft. Views are my own.
Reposted by Andrew Ruddick
Awesome that MS are supported and documenting VBS enclaves properly. learn.microsoft.com/en-us/window.... Also awesome that in the example exported entry point they provide they don't seem to mention how careful you need to be with the input pointer that you don't just read/write enclave memory :)
VBS Enclaves Development Guide - Secure Enclaves
Development guide for Virtualization-based security (VBS) enclaves - Learn how to build a basic VBS enclave.
learn.microsoft.com
November 25, 2024 at 2:49 AM
Awesome that MS are supported and documenting VBS enclaves properly. learn.microsoft.com/en-us/window.... Also awesome that in the example exported entry point they provide they don't seem to mention how careful you need to be with the input pointer that you don't just read/write enclave memory :)
A pre-auth remote DoS in the Windows kernel SMB stack I found was patched today under CVE-2024-43642: msrc.microsoft.com/update-guide...
Security Update Guide - Microsoft Security Response Center
msrc.microsoft.com
November 13, 2024 at 12:25 AM
A pre-auth remote DoS in the Windows kernel SMB stack I found was patched today under CVE-2024-43642: msrc.microsoft.com/update-guide...
Reposted by Andrew Ruddick
🆕 New blog post! "Exploiting KsecDD through Server Silos"
In my latest mini research project, I've been working with my teammate @PMa1n (X) on extending the work of @floesen_ (X) on the KsecDD driver. I'm thrilled to finally share the results.
👉 blog.scrt.ch/2024/11/11/e...
In my latest mini research project, I've been working with my teammate @PMa1n (X) on extending the work of @floesen_ (X) on the KsecDD driver. I'm thrilled to finally share the results.
👉 blog.scrt.ch/2024/11/11/e...
Exploiting KsecDD through Server Silos – SCRT Team Blog
blog.scrt.ch
November 11, 2024 at 1:40 PM
🆕 New blog post! "Exploiting KsecDD through Server Silos"
In my latest mini research project, I've been working with my teammate @PMa1n (X) on extending the work of @floesen_ (X) on the KsecDD driver. I'm thrilled to finally share the results.
👉 blog.scrt.ch/2024/11/11/e...
In my latest mini research project, I've been working with my teammate @PMa1n (X) on extending the work of @floesen_ (X) on the KsecDD driver. I'm thrilled to finally share the results.
👉 blog.scrt.ch/2024/11/11/e...