Windows Kernel Rootkits | CodeMachine

**wowebook** · 04-30-2024, 06:43 PM

Windows Kernel Rootkits | CodeMachine
English | Size: 11.77 GB
Genre: eLearning

To achieve maximum stealth and obtain unabated access to the system, rootkits execute in kernel mode. This course focuses on the kernel interfaces (APIs), data structures and mechanisms that are exploited by rootkits to achieve their goals at every stage of their execution. Kernel security enhancements that have been progressively added from Windows 7 to the latest version of Windows are discussed along with some circumvention techniques.

This advanced course provides a comprehensive end-to-end view of the modus-operandi of rootkits by taking an in-depth look at behind the scenes working of the Windows kernel and how these mechanisms are exploited by malware through hands-on labs and real-world case studies. Kernel security enhancements that have been progressively added to Windows are discussed along with some circumvention techniques. Attendees will study key techniques used by rootkits to understand the real-world applicability of these concepts for offensive and defensive purposes.

This training is beneficial to anyone responsible for developing, detecting, analyzing, and defending against rootkits and other Windows kernel post-exploitation techniques including EPP/EDR software developers, anti-malware engineers, security researchers, red/blue/purple teamers.

A special version of this training is also available for malware, rootkit forensics analysts where the focus is not on implementing rootkit functionality but rather on investigating rootkits using tools such as WinDBG and Volatility. This analyst version does not require attendees to have a programming background and contains topics related to rootkit detection and case studies.

Learning Objectives
Understand vulnerabilities in the Windows kernel and device drivers.
Be able to write and modify kernel-mode exploits.
Understand the security enhancements that have been added to the Windows kernel over time.
Be able to bypass some of the security mitigations in recent versions of Windows.
Understand the post-exploitation steps performed by kernel-mode rootkits.
Understand the techniques used by real-world rootkits.
Understand how rootkits hide their presence in the system.
Understand how rootkits intercept systemwide networking activity.
Be able to identify malicious behavior and defend against rootkits.
Topics
Kernel Attacks
Kernel Shellcoding
Kernel Hooking and Injection

Kernel Callbacks
Kernel Filtering
Kernel Networking
Virtualization Based Security

DOWNLOAD FROM RAPIDGATOR

Code:

https://rapidgator.net/file/d2fe8c16c6bc6345c497a0c18f51942c/CodeMachine-Kernel-Rootkits.part01.rar.html
https://rapidgator.net/file/18da46dda7242ed5d03b27de0e00c156/CodeMachine-Kernel-Rootkits.part02.rar.html
https://rapidgator.net/file/e105877aacc959fa8475d0b66bdd59f1/CodeMachine-Kernel-Rootkits.part03.rar.html
https://rapidgator.net/file/d2666794cff4d788618ae76d285f9cbc/CodeMachine-Kernel-Rootkits.part04.rar.html
https://rapidgator.net/file/050a19446827598574bfd9732a63129d/CodeMachine-Kernel-Rootkits.part05.rar.html
https://rapidgator.net/file/55acdc96d0725c13afbb47000261ed73/CodeMachine-Kernel-Rootkits.part06.rar.html
https://rapidgator.net/file/387b7468db3387fee960838d42a35caa/CodeMachine-Kernel-Rootkits.part07.rar.html
https://rapidgator.net/file/1b935f7cb8b56cbff5ad9d04b94de9d0/CodeMachine-Kernel-Rootkits.part08.rar.html
https://rapidgator.net/file/2d174158deea967a6a8ccc15f19b0f4b/CodeMachine-Kernel-Rootkits.part09.rar.html
https://rapidgator.net/file/bfa4eddbfe22766881c2871b2197cb0a/CodeMachine-Kernel-Rootkits.part10.rar.html
https://rapidgator.net/file/4fcbcbaaddcf38488d1b6be9b654482c/CodeMachine-Kernel-Rootkits.part11.rar.html
https://rapidgator.net/file/f6a86ae4f1c0ae47b5a6d0c388a0567b/CodeMachine-Kernel-Rootkits.part12.rar.html

DOWNLOAD FROM TURBOBIT

Code:

https://tbit.to/m6mgxtx26rl2/CodeMachine-Kernel-Rootkits.part01.rar.html
https://tbit.to/roiuff6idlew/CodeMachine-Kernel-Rootkits.part02.rar.html
https://tbit.to/xeob4oo0fdud/CodeMachine-Kernel-Rootkits.part03.rar.html
https://tbit.to/5o1ba316nn8d/CodeMachine-Kernel-Rootkits.part04.rar.html
https://tbit.to/o2kvy032k43t/CodeMachine-Kernel-Rootkits.part05.rar.html
https://tbit.to/ldispmnozecc/CodeMachine-Kernel-Rootkits.part06.rar.html
https://tbit.to/43jpd2x0pyc9/CodeMachine-Kernel-Rootkits.part07.rar.html
https://tbit.to/kvimxsyv7yka/CodeMachine-Kernel-Rootkits.part08.rar.html
https://tbit.to/gb2wvujljo2r/CodeMachine-Kernel-Rootkits.part09.rar.html
https://tbit.to/v5er43nzcq7g/CodeMachine-Kernel-Rootkits.part10.rar.html
https://tbit.to/qkp1ubdum893/CodeMachine-Kernel-Rootkits.part11.rar.html
https://tbit.to/9zc45kzcya3y/CodeMachine-Kernel-Rootkits.part12.rar.html

If any links die or problem unrar, send request to

Code:

https://forms.gle/e557HbjJ5vatekDV9

Thread: Windows Kernel Rootkits | CodeMachine

Thread Tools

Display

Windows Kernel Rootkits | CodeMachine

Facebook comments

Posting Permissions