Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hacking Windows Vista Security Dan Griffin JW Secure, Inc.

Published byHope Sherman Modified over 9 years ago

Similar presentations

Presentation on theme: "Hacking Windows Vista Security Dan Griffin JW Secure, Inc."— Presentation transcript:

1 Hacking Windows Vista Security Dan Griffin JW Secure, Inc.

2 Introduction Who am I? What are these tools and where did they come from?

3 Topic Summary Sample code projects are C/C++ based & require Vista Free downloads! Topics: Smart Cards, Crypto, Firewall, IPsec

4 Hacking Smart Cards Or, more specifically, fuzzing smart card middleware. What’s fuzzing? What’s a smart card? What’s smart card middleware?

5 Smart Card Application Stack

6 Smart Card Fuzzing Demo (Or, don’t trust everything your smart card tells you …)

7 Hacking Crypto What’s CNG? What’s CMS? What’s Twofish? Article link –http://blogs.msdn.com/onoj/archive/2007/05/10/windo ws-vista-security-series-adding-a-cipher-algorithm-to- windows-vista.aspxhttp://blogs.msdn.com/onoj/archive/2007/05/10/windo ws-vista-security-series-adding-a-cipher-algorithm-to- windows-vista.aspx Code download –http://download.microsoft.com/download/f/1/2/f12dbb b5-d164-4e7c-b42d-aaca3efb85dc/CNGSample.EXEhttp://download.microsoft.com/download/f/1/2/f12dbb b5-d164-4e7c-b42d-aaca3efb85dc/CNGSample.EXE

8 Twofish Plug-in Architecture

9 Crypto Demo (Or, now NSA can’t read my email ) (maybe …)

10 Hacking The Firewall What’s a network firewall? Article link –http://blogs.msdn.com/onoj/archive/2007/05/09/windo ws-vista-security-series-programming-the-windows- vista-firewall.aspxhttp://blogs.msdn.com/onoj/archive/2007/05/09/windo ws-vista-security-series-programming-the-windows- vista-firewall.aspx Code download –http://download.microsoft.com/download/f/1/2/f12dbb b5-d164-4e7c-b42d- aaca3efb85dc/FirewallSample.exehttp://download.microsoft.com/download/f/1/2/f12dbb b5-d164-4e7c-b42d- aaca3efb85dc/FirewallSample.exe

11 FwTool Architecture

12 Firewall Demo

13 Hacking IPsec/Socket Extensions What’s IPsec? What’s “Winsock Secure Socket Extensions”? Code download –http://download.microsoft.com/download/f/1/2/f12dbb b5-d164-4e7c-b42d- aaca3efb85dc/IPsecPingSample.EXEhttp://download.microsoft.com/download/f/1/2/f12dbb b5-d164-4e7c-b42d- aaca3efb85dc/IPsecPingSample.EXE

14 IPsecPing Architecture

15 IPsecPing Demo (Co-developed with V6 Security, Inc.)

16 Questions? Contact Info –Dan Griffin (dan@jwsecure.com)dan@jwsecure.com –Blog = http://www.jwsecure.com/dan/index.html http://www.jwsecure.com/dan/index.html

Download ppt "Hacking Windows Vista Security Dan Griffin JW Secure, Inc."

Similar presentations

Chapter 1  Introduction 1 Introduction Chapter 1  Introduction 2 The Cast of Characters  Alice and Bob are the good guys  Trudy is the bad guy 

Chapter 1  Introduction 1 Introduction Chapter 1  Introduction 2 The Cast of Characters  Alice and Bob are the good guys  Trudy is the bad guy 
Research Notes Tool Chuck Connell, Tufts Univ.. Tufts University Computer Science22 Two Research Problems References… Many types – books, articles, web.

Research Notes Tool Chuck Connell, Tufts Univ.. Tufts University Computer Science22 Two Research Problems References… Many types – books, articles, web.
First version of SEL Software contains over 10,000’s eBooks. Expected release in the first quarter of 2011 All updated or latest version will be distributed.

First version of SEL Software contains over 10,000’s eBooks. Expected release in the first quarter of 2011 All updated or latest version will be distributed.
Blogging = Student Engagement Delta Kappa Gamma International Spokane, WA July 22, 2010.

Blogging = Student Engagement Delta Kappa Gamma International Spokane, WA July 22, 2010.
Developing Smart Client Applications For The Enterprise Keith Elder Team Leader / Sr. Software Engineer Quicken Loans Blog:

Developing Smart Client Applications For The Enterprise Keith Elder Team Leader / Sr. Software Engineer Quicken Loans Blog:
Joomla & WordPress By: Brenda Iglesias. What is Joomla? Joomla is an award-winning content management system or CMS Enables you to build Web sites and.

Joomla & WordPress By: Brenda Iglesias. What is Joomla? Joomla is an award-winning content management system or CMS Enables you to build Web sites and.
SOFTWARE SECURITY TESTING IS IMPORTANT, DIFFERENT AND DIFFICULT Review by Rayna Burgess 4/21/2011.

SOFTWARE SECURITY TESTING IS IMPORTANT, DIFFERENT AND DIFFICULT Review by Rayna Burgess 4/21/2011.
How To Keep Up With Security Patches Eric Schultze Security Strategies Microsoft.

How To Keep Up With Security Patches Eric Schultze Security Strategies Microsoft.
Hacking Windows Vista Security Dan Griffin JW Secure, Inc.

Hacking Windows Vista Security Dan Griffin JW Secure, Inc.
Miles Maier Lasa Managing ICT About Lasa 30 years in the sector Technology leadership, publications, events and consultancy

Miles Maier Lasa Managing ICT About Lasa 30 years in the sector Technology leadership, publications, events and consultancy
Creating a Web Presence Introduction to WordPress Week 1.

Creating a Web Presence Introduction to WordPress Week 1.
Student Registration Lingnan University. Student Registration An Valid Email address Student Access Code (bundled with your textbook) E.g. ASCHA-BAEDA-DOWEL-XXXXX-NOBBY-

Student Registration Lingnan University. Student Registration An Valid address Student Access Code (bundled with your textbook) E.g. ASCHA-BAEDA-DOWEL-XXXXX-NOBBY-
Learning In A Techno World How Safe is Your Cyberspace?

Learning In A Techno World How Safe is Your Cyberspace?
Operating Systems Concepts 1/e Ruth Watson Chapter 4 Chapter 4 Windows Utilities Ruth Watson.

Operating Systems Concepts 1/e Ruth Watson Chapter 4 Chapter 4 Windows Utilities Ruth Watson.
Stay Safe & Secure Online. Outline Passwords Everyday Security Email Security Physical Security Protecting Personal Information.

Stay Safe & Secure Online. Outline Passwords Everyday Security Security Physical Security Protecting Personal Information.
Carole Myers CIED 7601. What is Digital Security?  According to Ribble and Bailey, it is “the precautions that all technology users must take to guarantee.

Carole Myers CIED What is Digital Security?  According to Ribble and Bailey, it is “the precautions that all technology users must take to guarantee.
Research? What’s Research?. Is this you??? How can we make sure we don’t end up like the tie-dyed bear?

Research? What’s Research?. Is this you??? How can we make sure we don’t end up like the tie-dyed bear?
Information Trapping Subscribing to RSS Feeds or Email Alerts to Make Research Easier.

Information Trapping Subscribing to RSS Feeds or Alerts to Make Research Easier.
Copyright ONE-O-ONE iSOLUTIONS Inc. 2001 1 www.one-o-one.com Smart Card Technology for the Macintosh Chris Goeltner January 30, 2001.

Copyright ONE-O-ONE iSOLUTIONS Inc Smart Card Technology for the Macintosh Chris Goeltner January 30, 2001.
DITA Info Introduction DITA Architecture Maps Specialization Business case Best practices FAQ & Fact Sheet References Reuse XSL Open Toolkit DITA RSS IRC.

DITA Info Introduction DITA Architecture Maps Specialization Business case Best practices FAQ & Fact Sheet References Reuse XSL Open Toolkit DITA RSS IRC.

Similar presentations

Ads by Google