Control Flow Guard Bypass Demonstrates Potential of New Exploits; Open Source Analysis Tool Enables Security Researchers to De-obfuscate Encoded Malware
CUPERTINO, Calif. — September 16, 2015 — Bromium®, Inc., the pioneer of threat isolation to prevent data breaches, today announced it will be presenting its latest research into security exploits and malware analysis tools at DerbyCon 2015. “Gadgets Zoo: Bypassing Control Flow Guard in Windows 10” will identify the potential of new exploits. “Attacking Packing: Captain Hook Beats Down on Peter Packer” will introduce a new open source analysis tool that de-obfuscates encrypted and encoded malware.
WHAT: Gadgets Zoo: Bypassing Control Flow Guard in Windows 10
WHEN: Friday, September 25 from 2:00 - 2:50 pm ET
WHERE: Track 1, Break Me
WHO: Jared DeMott, Principal Security Engineer and Researcher
In this DerbyCon presentation, Dr. DeMott will introduce a new technique, “Stack Desync,” which enables the bypass of Microsoft Control Flow Guard (CFG).
WHAT: Attacking Packing: Captain Hook Beats Down on Peter Packer
WHEN: Saturday, September 26 from 4:00 – 4:50 pm ET
WHERE: Track 4, The 3-Way
WHO: Nick Cano and Vadim Kotov, Senior Security Researchers
In this technical talk, Dr. Kotov and Cano will introduce an open source malware analysis tool, The Packer Attacker, which enables security researchers to de-obfuscate encrypted and encoded malware.
The Packer Attacker is available: https://github.com/BromiumLabs/PackerAttacker
DerbyCon is an event where security professionals, hobbyists and anyone interested in security convenes annually. For additional conference details, visit: www.derbycon.com
About Bromium, Inc.
Bromium is re-inventing enterprise security with its powerful new technology, micro-virtualization, which was designed to protect businesses from advanced malware by design, while simultaneously empowering users and delivering real-time threat intelligence to IT. Unlike traditional security methods, which rely on complex and ineffective detection techniques, Bromium protects against malware from the Web, email or USB devices, by automatically isolating each user-task at the endpoint in a hardware-isolated micro-VM, preventing theft or damage to any enterprise resource. Bromium’s technological innovations have earned the company numerous industry awards. Bromium counts a rapidly growing set of Fortune 500 companies and government agencies as customers.
Read the Bromium blog: http://blogs.bromium.com/
Follow Bromium on Twitter: https://twitter.com/bromium
Follow Bromium on LinkedIn: https://www.linkedin.com/company/bromium
# # #