[HITBAMS 2016] Kernel Exploit Mining and Hunting

This talk was presented at HITBAMS on May 2016


This talk will focus on how to proactively discover the effective samples with kernel exploits, or potentially 0-day kernel exploits, through a dynamic-analysis system. In addition to that this talk will also discuss the evolution kernel exploits that could bypass kernel exploit detection and prevention methodology used in HIPS by some of the software security vendors. Finally, this talk will introduce some of the behavioral detection methods that can be used to identify the existence of kernel exploit.