Gmliu is a researcher in Tencent Zhanlu Lab.
[Abstract]
==========
In recent years, Windows kernel security has been highly regarded and Microsoft has enhanced Windows kernel security. Owing to this, kernel issue is fewer and fewer and it is much harder for security researchers to find kernel bugs. So I developed a tool to help the security researchers to fuzz Windows kernel.
In this talk, I will introduce a new method to fuzz Windows kernel first. And then, I will show a fuzzing framework, how it works, and discuss some methods of Windows kernel fuzzing. The fuzzing focuses on Windows kernel objects and the relationship with different objects. This talk will cover the GDI object and some other Windows kernel objects. And I will show some crash cases that I found with the fuzzing framework. In the end, I will share some Windows crash details and show an exploit demo.