So Cool (PL) 19 th Kang, Sung won 19 th Park, Jong min 19 th Park Gui mong.

Slides:



Advertisements
Similar presentations
Using VHDs in Remediation Workshops. Overview Advantages Simple and robust setup Use prepared VHDs Easy to reset (copy VHD file) Easy to switch between.
Advertisements

Operating System Security : David Phillips A Study of Windows Rootkits.
CSCE 145: Algorithmic Design I Chapter 1 Intro to Computers and Java Muhammad Nazmus Sakib.
Web Canary -- client honey pot UTSA. Architecture of Web canary. 2.
MCITP Guide to Microsoft Windows Server 2008 Server Administration (Exam #70-646) Chapter 3 Configuring the Windows Server 2008 Environment.
KAPLAN SCHOOL OF INFORMATION SYSTEMS AND TECHNOLOGY Welcome to Unit 3 IT278 Network Administration Course Name – IT278 Network Administration Instructor.
Operating systems This work is licensed under a Creative Commons Attribution-Noncommercial- Share Alike 3.0 License. Skills: none IT concepts: popular.
Windows Security and Rootkits Mike Willard January 2007.
Fall 2011 Nassau Community College ITE153 – Operating Systems Session 24 NTFS Permissions and Sharing Printers 1.
IERG4180 Tutorial 4 Jim.
ROOT KITS. Overview History What is a rootkit? Rootkit capabilities Rootkits on windows OS Rootkit demo Detection methodologies Good tools for detection.
Windows Anti-virus and Security WNUG Meeting
VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.
SP2 Mikael Nystrom. Agenda Översikt Installation.
Symbian os with smart phones Guided by: Hetal A Josiyara
SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB
Using Virtualization in the Classroom. Using Virtualization in the Classroom Session Objectives Define virtualization Compare major virtualization programs.
Code Injection and Software Cracking’s Effect on Network Security Group 5 Jason Fritts Utsav Kanani Zener Bayudan ECE 4112 Fall 2007.
Microsoft ® Official Course Module 9 Configuring Applications.
Week 6 Operating Systems.
Working with Applications Lesson 7. Objectives Administer Internet Explorer Secure Internet Explorer Configure Application Compatibility Configure Application.
SmartLog X 3 TEAM Basic SmartLog X 3 TEAM Basic DescoEMIT.com USER STATUS USER EDIT TEST LOG ADMIN TEST MACHINE SCHEDULE INSTALL System Requirements:
P6 - CONFIGURE THE SOFTWARE. CONFIGURE SOFTWARE Most software can be configured to suit an individual user, for example by changing the appearance of.
About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning.
1 Working with MS SQL Server. 2 Objectives You will be able to Use Visual Studio for GUI based interactive access to a Microsoft SQL Server database.
Tutorial 11 Installing, Updating, and Configuring Software
Session 1 - Introduction and Data Access Layer
@2011 Mihail L. Sichitiu1 Android Introduction Platform Overview.
Hands-On Virtual Computing
——For running the Warehouse Mapper.. Download a VMware Workstation software. Website Link: detail/13808.html?qq- pf-to=pcqq.c2c.
Using Virtualization in the Classroom. Using Virtualization in the Classroom Session Objectives Define virtualization Compare major virtualization programs.
CHAPTER FOUR COMPUTER SOFTWARE.
COMP25212: Virtualization Learning Objectives: a)To describe aims of virtualization - in the context of similar aims in other software components b)To.
Rootkits in Windows XP  What they are and how they work.
9 Chapter Nine Compiled Web Server Programs. 9 Chapter Objectives Learn about Common Gateway Interface (CGI) Create CGI programs that generate dynamic.
1 Working with MS SQL Server Textbook Chapter 14.
CS 444 Introduction to Operating Systems
Monnappa KA  Info Security Cisco  Member of SecurityXploded  Reverse Engineering, Malware Analysis, Memory Forensics 
Static Testing Code Review/Verification –Code is reviewed by the developer after each change Individually and with code sessions –Use of Visual Studio’s.
14 Step-by-Step Instructions for an Upgrade Installation n Prepare for the installation Verify that all devices and applications are Windows 2000 compatible.
Android architecture & setting up. Android operating system comprises of different software components arranges in stack. Different components of android.
E X C E E D I N G E X P E C T A T I O N S OP SYS Linux System Administration Dr. Hoganson Kennesaw State University Operating Systems Functions of an operating.
A+ Guide to Managing and Maintaining Your PC Fifth Edition Chapter 13 Understanding and Installing Windows 2000 and Windows NT.
Training on Basic Software Hardware Installation
Package & Deploy. OBJECTIVES Package Deploy Way to package.
© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 7 Under the Windows Desktop McGraw-Hill.
Digital Communication Systems Comp Functions of the Operating System.
Hands-On Virtual Computing
© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 7 Under the Windows Desktop McGraw-Hill.
Security Architecture and Design Chapter 4 Part 2 Pages 319 to 357.
Overview of Windows Driver Development Reference: us/gstart/hh/gstart/gs_intro_031j.asp.
System Programming Basics Cha#2 H.M.Bilal. Operating Systems An operating system is the software on a computer that manages the way different programs.
Digital Rights Management: Shareware Yue Wang 24 Nov 2004.
Internet Explorer 7 Updated Advice for the NHS 04 February 2008 Version 1.3.
Lecture 10 Anti-debugger techniques. Anti-debuggers Making reverse-engineering and disassembly painful –Polymorphism –Encryption –Interrupt disabling.
ITMT Windows 7 Configuration Chapter 7 – Working with Applications.
Testing, Debugging, and Deploying a Mobile App Lesson 8.
VIRTUAL MACHINE – VMWARE. VIRTUAL MACHINE (VM) What is a VM? – A virtual machine (VM) is a software implementation of a computing environment in which.
Using Virtualization in the Classroom
Computer System Structures
Mobile Device Development
Computers: Tools for an Information Age
Chapter Objectives In this chapter, you will learn:
Computer Software CS 107 Lecture 2 September 1, :53 PM.
Chapter 3: Windows7 Part 1.
Module 1: Getting Started
Windows Internals Brown-Bag Seminar Chapter 1 – Concepts and Tools
Outline Operating System Organization Operating System Examples
0. Overview of 2-Day Academic .NET Workshop
Basic Dynamic Analysis VMs and Sandboxes
Presentation transcript:

So Cool (PL) 19 th Kang, Sung won 19 th Park, Jong min 19 th Park Gui mong

Protector of My Digital Contents Busan Samsung Software Membership

X ?? User

Protector of My Digital Contents Busan Samsung Software Membership Protector Prevent Illegal Copy & Use Unlimited File Format (Limited Period) JPG Regular Players

Protector of My Digital Contents Busan Samsung Software Membership License Policy Contents Provider Application + Web Server Windows Driver ActiveX License Policy License Policy Contents User Windows Driver WebServer Address Connect(Using WebBrower) Using ActiveX ( Automatically install Driver & License ) Contents Transmit

Protector of My Digital Contents Busan Samsung Software Membership Provider Application Add File Save String[] License Setup to File CAB File Auto Make Add to Web Server & Running

Protector of My Digital Contents Busan Samsung Software Membership Provider User Add File Provider Application WebServer DownFile List INCLUDE Setup RUN WebServer DownFile List READ Downlaoder File Down

Protector of My Digital Contents Busan Samsung Software Membership Application I/O Manager File System Filter File System Stack User Level Kernel Level Filter Manager Filter Manager System Mini Filter Driver System Mini Filter Driver Network Mini Filter Driver Network Mini Filter Driver

Protector of My Digital Contents Busan Samsung Software Membership System Service Dispatch Table XX Keeper (Self Defender) SystemServiceDispatherSystemServiceDispather System Service XX System Service XX

Protector of My Digital Contents Busan Samsung Software Membership Keeper Driver (Self Defender) SystemInformationClass SystemInformation …. ReturnLength SystemInformationLength NewZwQuerySystemInformation Process information D D C C B B A A

Protector of My Digital Contents Busan Samsung Software Membership Keeper Driver (Self Defender) hFile hEvent …. IoApcContext FileInfoClass NewZwQueryDirectoryFileNewZwQueryDirectoryFile Hide File & Folder inform D D C C B B A A

Protector of My Digital Contents Busan Samsung Software Membership

.inf File Make.CAB File Make

Protector of My Digital Contents Busan Samsung Software Membership

Anti-Reversing Techniques Anti-Analysis BreakPoint Detection Garbage Code Anti-Disassembly

Protector of My Digital Contents Busan Samsung Software Membership Anti-Disassembly Example Code

Protector of My Digital Contents Busan Samsung Software Membership Anti-Disassembly Apply

Protector of My Digital Contents Busan Samsung Software Membership Anti-Disassembly Result

Protector of My Digital Contents Busan Samsung Software Membership BreakPoint Detection Apply

Protector of My Digital Contents Busan Samsung Software Membership BreakPoint Detection Result Will jump to the wrong memory address.

Protector of My Digital Contents Busan Samsung Software Membership Garbage Code Apply

Protector of My Digital Contents Busan Samsung Software Membership Garbage Code Result Complex code

Protector of My Digital Contents Busan Samsung Software Membership Anti-Capture Empty clipboard Native Api Hooking Dll Injection Ctrl + C, PrintScreen Key to prevent use BitBlt() Hooking NtGdiBitBlt() Hooking User Anti-Capture

Protector of My Digital Contents Busan Samsung Software Membership Anti-Capture Native Api Hooking NtGdiBitBlt Funtion Hooking Win32k.sys SystemServiceDescriptorShadowTable Hooking

Protector of My Digital Contents Busan Samsung Software Membership Device Driver Loader Service Control Manager (SCM) InstallHinfSection Program Install Registry Protection RUNDLL32.EXE SETUPAPI.DLL,InstallHinfSection DefaultInstall 132 Driver.inf

Protector of My Digital Contents Busan Samsung Software Membership Development Environment OS : Windows Window XP SP3 IDE : Microsoft Visual Studio 2008 / 6.0 Windows Device Kit Debug Tool : OllyDBG, WinDbg, DbgView Virtual Machine : VMWare Workstation 6.0 Language : C#, C, C++, Assambly

Protector of My Digital Contents Busan Samsung Software Membership Kang, Sung won (PL) Provider Application (Protector) - Digital Contents File Management - License Policy - WebSever & WebPage - ActiveX (Automatically install Driver & License) Anti-Reversing - Garbage Code - Anti-Disassembly - Breakpoint Detection Anti Capture Park, Jong min Park, Gui mong Keeper (Windows Driver) Mini Filter Driver - System Filter Driver - Network Filter Driver Driver Loader

Protector of My Digital Contents Busan Samsung Software Membership Kang, Sung won Park, Jong minPark, Gui mong

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.