More dates

Payment plans available!

How payment plans work

  • Your order will be reserved but sent to you only after the full payment plan has been completed.
  • A minimum upfront payment is required to secure your order. This includes a surcharge, a non-refundable cancellation fee, and a refundable deposit.
  • You’ll receive a notification before each payment attempt. You must ensure sufficient funds are available.

Reach the Nirvana

DEF CON Workshops
Host icon
DEF CON Workshops
244 followers  ·  Contact host (Opens in new tab)
Add to calendar

Sat, Aug 9, 9am - 1pm PDT

Event description

Reach the Nirvana

Level of Instruction: Advanced

Instructed by: Yoann "OtterHacker" DEQUEKER

Abstract:

The Nirvana Debug is a Windows internal features existing since Windows 7. This workshop idea is to see how this feature can be weaponized in order to either:

- Hijack execution flow

- Perform process injection

- Perform sleep obfuscation for C2 beacon

During this workshop, you will learn the main principle of Nirvana Debugging, and try to weaponize it. Some debugging, reverse and coding will be needed in order to create a new malware that will evade classic EDR solutions.

WHILE THIS IS AN INTRODUCTION TO NIRVANA HOOKING, THIS WORKSHOP IS STILL A HIGHLY TECHNICAL WORKSHOP


Powered by

Tickets for good, not greed Humanitix dedicates 100% of profits from booking fees to charity

DEF CON Workshops
Host icon
Hosted by DEF CON Workshops