logo
allArticlesConferencesPresentations

How to Better Fuzz Windows 10 Directx Kernel at Present

Conference:  BlackHat EU 2020

2020-12-10

Summary

The presentation discusses new research on DirectX, including new attack methods and paths, and how to design targeted fuzz to find vulnerabilities. The speaker also explores how to better design closed source fuzz.
  • DirectX architecture and system calls
  • Discovery of new attack methods and paths
  • Designing targeted fuzz to find vulnerabilities
  • Exploring how to better design closed source fuzz
The speaker discusses how they discovered a system mechanism in DirectX that releases shared memory when a process is destroyed, and how this can be exploited to find vulnerabilities.

Abstract

DirectX is the engine that handles rendering on the Windows platform. Many outstanding people have made outstanding contributions in the research of DirectX. In this talk, I will share new research content of DirectX including the discovery of new attack methods, new paths, and how to design targeted fuzz based on these, and find related vulnerabilities. I will also introduce the experience of designing Windows kernel fuzz and explore how to better design closed source fuzz.
Materials:
Slides
Tags:

Post a comment

Related work

eBPF ELFs JMPing Through the Windows

Conference:  Black Hat USA 2022
Authors:
2022-08-11

Mobius Band: Explore Hyper-V Attack Interface through Vulnerabilities Internals

Conference:  BlackHat USA 2021
Authors:
2021-08-04

Central bank digital currency, threats and vulnerabilities

Conference:  Defcon 29
Authors:
2021-08-01

DirectX: The New Hyper-V Attack Surface

Conference:  Black Hat USA 2022
Authors:
2022-08-11

Is WebAssembly Really Safe? --Wasm VM Escape and RCE Vulnerabilities Have Been Found in New Way

Conference:  Black Hat USA 2022
Authors:
2022-08-10

Windows Heap-backed Pool: The Good, the Bad, and the Encoded

Conference:  BlackHat USA 2021
Authors:
2021-08-04