Windows is a complex operating system which can make finding security vulnerabilities difficult as it’s hard to know where to start. This presentation will give a quick introduction to all the interesting areas of Windows into which you can look. It will also introduce some of the tools and techniques I use for finding new security vulnerabilities.
About Eugene Teo
James Forshaw is a security researcher in Google's Project Zero. He has been involved with computer hardware and software security for over 10 years looking at a range of different platforms and applications. With a great interest in logical vulnerabilities, he's been listed as the #1 researcher for MSRC, as well as being a Pwn2Own and Microsoft Mitigation Bypass bounty winner. He has spoken at a number of security conferences including Black Hat USA, CanSecWest, Bluehat, HITB, and Infiltrate. He's also the author of the book "Attacking Network Protocols" available from NoStarchPress.