Windows RunTime - Hack In The Box 2012 - QuarksLAB
Windows RunTime - Hack In The Box 2012 - QuarksLAB
Windows RunTime - Hack In The Box 2012 - QuarksLAB
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>Windows</strong> 8 WinRT - Applications & Components WinRT - <strong>In</strong>ternals <strong>Windows</strong> Store Sandbox Conclusion<br />
Process isolation<br />
Chrome<br />
Low<strong>Box</strong><br />
RESTRICTED SID (S-1-15-2) is set to restricted<br />
Most of SID group are disabled<br />
Isolation relies on job and<br />
(on <strong>Windows</strong> XP) desktop<br />
(on <strong>Windows</strong> Vista and superior) integrity level<br />
Has to call TargetServices::LowerToken to be isolated<br />
Microsoft modified _TOKEN structure<br />
A new syscall NtCreateLow<strong>Box</strong>Token to make a very limited token<br />
SepAccessCheck was slightly modified