https://wiki.owasp.org/index.php?action=history&feed=atom&title=Vbootkit_2.0%3A_Attacking_Windows_7_Via_BootVbootkit 2.0: Attacking Windows 7 Via Boot - Revision history2026-04-11T17:25:11ZRevision history for this page on the wikiMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Vbootkit_2.0:_Attacking_Windows_7_Via_Boot&diff=66476&oldid=prevDhruvsoi: Created page with 'This talk will introduce a new tool which allows attacks against Windows 7 via boot sectors. In this talk, Vbootkit 2.0 will be demonstrated in action to show how to bypass and c…'2009-07-24T06:55:37Z<p>Created page with 'This talk will introduce a new tool which allows attacks against Windows 7 via boot sectors. In this talk, Vbootkit 2.0 will be demonstrated in action to show how to bypass and c…'</p>
<p><b>New page</b></p><div>This talk will introduce a new tool which allows attacks against Windows 7 via boot sectors. In this talk, Vbootkit 2.0 will be demonstrated in action to show how to bypass and circumvent security policies/architecture using customized boot sectors for Windows 7 (x64). The talk will cover:<br />
<br />
*Windows 7 Boot architecture<br />
*Vbootkit 2.0 architecture and inner workings<br />
*Insight into the Windows 7 minkernel<br />
<br />
Demonstration will also include:<br />
<br />
*The use of Vbootkit in gaining access to a system without leaving traces<br />
*Leveraging normal programs to escalate system privileges<br />
*Remote control windows 7 using ping packets<br />
*Remote key logger<br />
*Running unsigned code in kernel<br />
<br />
All this is done, without having any footprint on the HDD (everything is in memory). It also remains invisible to all existing anti-virus solutions.</div>Dhruvsoi