HIP16-TALK From zero to SYSTEM on full disk encrypted Windows system скачать в хорошем качестве

HIP16-TALK From zero to SYSTEM on full disk encrypted Windows system

DAY 1 TALK 7 / Nabeel Ahmed & Tom Gilis Whether you want to protect the operating system components or your personal files, a Full Disk Encryption (FDE) solution allows you to keep track of the confidentiality and integrity. One of the most commonly used FDE solutions is Microsoft Bitlocker®, which due to its integration with the Trusted Platform Module (TPM) as well as the Active Directory environment makes it both userfriendly and manageable in a corporate environment. When the system is protected with a FDE solution, without a pre-boot password, the login or lock screen makes sure attackers with physical access are not able to gain access to the system. In this talk we will explain how an attacker with physical access to an active directory integrated system (e.g. through stealing) is able to bypass the login or lock screen and elevate his privileges to that of a local administrator or SYSTEM. Finally using the administrative privileges to extract the clear-text version of the user’s original password. All of this can be accomplished via two security vulnerabilities which affects all Windows versions (from Vista to 10) and abusing a standard “security” feature.