Practical Application Whitelisting Evasion

Presented at BSidesLV 2015, Aug. 4, 2015, 11 a.m. (55 minutes)

Organizations continue to tout Application Whitelisting as one of the best counter-measures to deploy. We have developed several evasion techniques that put organizations at risk that use Application Whitelisting. We would like to share these techniques, and engage in dialogue about ways to improve or expand our research.

Presenters:

• Casey Smith
  Casey Smith (@subtee) has a passion for understanding and testing the limits of defensive systems.

Links:

• https://bsideslv2015.sched.com/event/3umQ/practical-application-whitelisting-evasion

Similar Presentations:

• ShmooCon XI (2015) / Simple Windows Application Whitelisting Evasion
• DeepSec 2015 „DeepSec No. 9“ / A Case Study on the Security of Application Whitelisting
• TROOPERS16 (2016) / Mind The Gap - Exploit Free Whitelisting Evasion Tactics