Labs ?

[Nicolas Dorier]

Hello,

 

I plan to create labs for all what we learn.

A lab is a (or multiple) virtual machine with all the tools installed and documentation to learn and hack with the windows internals.

I saw that kernel debugging with TCP/IP is working so theorically, I should be able to create a lab to learn about kernel debugging, I plan to host labs in Azure.

 

I plan to re-use it to train people about Windows Internal.

This group is a gold mine of information, I'll be more than happy if you can make use of these labs for yourself or to train other people.

 

If I create some labs, does some of you paln to reuse them for training ?

If you are interested, share your thought about the organization, topics, labs to setup you would like to train other people on what we are learning.

 

Nicolas,

[Sunny Chakraborty]

Nicolas

This is an excellent idea. I am working on chapter by chapter notes, but I haven't had time to finish stuff and write them down.

Some more news from the world

Matt write a get-peb module in PowerShell. You can check powersploit module in github. It's under reverse engineering tools. It's essentially reflection and pinvoke but he did something great with that.

Adam Driscoll wrote a get-handle PowerShell module which is entirely a c# code block being called in PowerShell.

Www.csharpening.net

Matt wrote some other stuff with reflection for get-structs

Hopefully by end of this year we will have a bunch of PowerShell /c# modules which will replicate some of the functions of sysinternals with source code being made available.

Please continue to post regarding your experience with training people and what questions they come up with.

Thanks

Sunny

--