all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Debugging Windows Isolated User Mode (IUM) Processes

Add to bookmarks
Sept. 7, 2023, 3:21 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Introduction


A few months ago I wrote about two vulnerabilities I found in the TPM 2.0 reference implementation code. While trying to verify if the virtual TPM of Microsoft's Hyper-V was affected, I found that this virtual component runs as an Isolated User Mode (IUM) process, which means that it's not possible to attach a debugger to it, not even having elevated privileges.
After looking for information on how to debug this kind of processes, I found slices of …

code debugging found hyper-v implementation introduction microsoft mode process processes reference tpm tpm 2.0 verify virtual vulnerabilities windows

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

RSA Conference 2024: What to expect 31 minutes ago | malware.news
art article conference everything +13
ISC Stormcast For Monday, May 6th, 2024 https://isc.sans.edu/podcastdetail/8968, (Mon, May 6th) 3 hours ago | malware.news
topic
Just Launched: Checkmarx AI Security 8 hours ago | malware.news
address ai security appsec area +12
Introducing Real Time IDE Scanning – More Secure Code in Real Time 8 hours ago | malware.news
address code development development teams +14
Introducing AI Security Champion with Auto-remediation for SAST 8 hours ago | malware.news
ai security application applications application security +16
How to Incorporate SAST, DAST, and SCA into the SDLC 20 hours ago | malware.news
application application security application security testing application security testing tools +12
Nslookup's Debug Options, (Sun, May 5th) 22 hours ago | malware.news
debug dns machine may +4
Pay up, or else? – Week in security with Tony Anscombe 1 day, 10 hours ago | malware.news
attack caught dilemma hard +10
Sintesi riepilogativa delle campagne malevole nella settimana del 27 Aprile – 3 Maggio 2024 1 day, 12 hours ago | malware.news
cert con cui dei +2

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Bridgwater, United Kingdom
View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com
View more jobs