2025-08-04 –, Opal
Windows kernel drivers can intercept various operations happening on the system, such as process creation, thread creation (local or remote), Registry operations, file system operations, and more.
This crash course will show attendees how to write such drivers, install them on a VM, and communicate with them.
Windows kernel drivers can intercept various operations happening on the system, such as process creation, thread creation (local or remote), Registry operations, file system operations, and more.
This crash course will show attendees how to write such a driver, install them on a VM, and communicate with them.
Attendees will get their hands dirty by writing drivers, installing them, and debugging them.
Pavel Yosifovich is a renowned author, developer, and expert in Windows Internals, system programming, and software development. With extensive experience in low-level programming, he has authored several highly regarded books, including Windows Internals, Part 1 (7th Edition) and Windows 10 System Programming. His works provide deep insights into Windows architecture, kernel-mode development, and debugging techniques, making them essential resources for developers, security researchers, and IT professionals.