Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Windows Kernel Defense and Hacking for beginners to experts
Rating: 4.0 out of 5(83 ratings)
853 students

Windows Kernel Defense and Hacking for beginners to experts

Presented by Windows Kernel Security Researcher
Created byKelvin Chan
Last updated 4/2020
English

What you'll learn

  • Software Hacking and OS security
  • Kernel Security Defense and Attack - Rootkit, OS, Hypervisor and Hardware
  • Understanding Rootkit, OS, Hypervisor and Hardware Internals
  • Create your kernel based monitor
  • Easiest, straight forward and fastest way to get you into the kernel and virtualization security

Course content

2 sections28 lectures4h 54m total length
  • Introduction to Windows Kernel Driver Programming3:36

    Opening of the course

  • Setting up your kernel development environment6:40

    After this lesson, you will have a kernel development environment in your machine

  • Setting up kernel debugging environment10:55

    After this lesson, you will able to debug your windows kernel

  • Write your first Hello world driver7:36

    After this course , you will able to write the first driver

  • Introduction to Kernel Internals - Executable Image13:55

    After this course , you will have some insight of PE Image File

  • Introduction to Kernel Internals - Drivers11:40

    After this course , you will have some insight of Driver and kernel object

  • Introduction to Kernel Internals - Memory13:34

    After this course , you will have some insight of Windows Memory Manager

  • Introduction to Kernel Internals - Thread5:02

    After this course , you will have some insight of Windows Thread Internals

  • Introduction to Kernel Internals - Process3:12

    After this course , you will have some insight of process internals

  • Introduction to Kernel Internals - Processors17:53

    After this course , you will have some insight of legacy processors to modern processor, and how it works as well

  • Introduction to Kernel Internals - Syscall12:51

    After this course , you will have some insight of SYSTEM CALL and learn about internal structure

  • Communicating between user mode and kernel mode24:44

    In this lesson , you're going to learn how to load your driver in system programatically as well as communicate with your driver

  • System Callback Introduction3:08

    After this course , you will have some insight of System Callback, how does it work.

  • Monitoring the whole system activity in Windows Kernel19:12

    In this lesson you're going to learn bunch of system callback registration and hacky way to register some callback that's not permitted by default !!!!

  • Kernel Forensic - Detect Remote Thread Injection /Process Path Creation Tracing8:46

    After this course , you are able to do kernel forensic of detecting remote thread injection from kernel

  • Kernel Forensic - Dumping every DLL / Drivers loaded runtime in kernel10:44

    After this course , you are able to dumping and getting the PE Image loading path (.DLL /.SYS/ .EXE) from kernel

  • Kernel Forensic - Monitoring Registry Access in kernel8:14

    After this course , you are able trace every registry operation in kernel, as well as, intercept, stop, modify, and bypass them.

  • Kernel Forensic - Enumerating Internal Structure9:51
  • Protecting process by driver and against hacker9:17

    After this course , you are able to protect your process by kernel object level protection

  • Cross-Ring Communication Alternatives14:28

    In this course, you can learn more about communication way in between user mode and kernel mode, to make a better security engineering

  • I/O Request Packet (IRP) security implication8:13

    This lesson covers IRP internals usage, and security implication , such as , driver control interception by IRP hook and IRP hook detection

  • Summary2:01

    Summary, after this section, you are able to set up the driver development environment, debugging the windows kernel, loading the symbol, write your own first driver, also create you anti-virus / anti-cheat like monitor.

Requirements

  • C language
  • Assembly Language is a plus
  • Windows Application Development is a plus

Description

P.S. If you do have any kind of question during the course please let me know. Moreover, for student interaction and connecting 

Have you ever imagine to work in a big IT company like Microsoft , Google or Facebook ?  Have you ever want to be a fineness hacker in kernel and learn related knowledge and experience from Security Researcher? If the answer is YES, don't hesitate to take this course, It will guide you from zero to one into the kernel security by easiest way i'd say.

Understanding a low-level knowledge is a big plus for your career growth. Except for security folks, understanding it also enable us to have better ability to debug our high level program, this course will show you how am I explorer and leverage the knowledge of kernel and low level in research and development for production.

With attending this course, you will be enabled to understand what behinds the low level security project scene, how does it works behind the anti-cheat engine in general.

You will understand how to start a driver development in Windows whether as your hobby or career.

You will be able create your customized anti-cheat engine after this course from kernel , virtualization and hardware level.

Practically, after this course, you will know how to write your own kernel drivers for security, debugging the kernel, troubleshooting the Blue Screen, develop a anti-cheat like kernel based security solution, to create a kernel based weapon on your own, also enable you to develop a hypervisor based security solution, to create the hypervisor based security weapon for attack and defense on your own.

This course is teaching technique in general, however, it's the usable skills to develop or analysis on anti-cheat or rootkit, or game cheat as well.

This is my first time to be a lecturer, Hope you all have a nice journal during this course, and if you have any question during this course, please let me know :)

Who this course is for:

  • College Students
  • OS Security professionals
  • Software Security Enthusiast
  • Game Security Research & Engineer
  • Who loves Windows Internal