Windows RunTime - Hack In The Box 2012 - QuarksLAB
Windows RunTime - Hack In The Box 2012 - QuarksLAB
Windows RunTime - Hack In The Box 2012 - QuarksLAB
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>Windows</strong> 8 WinRT - Applications & Components WinRT - <strong>In</strong>ternals <strong>Windows</strong> Store Sandbox Conclusion<br />
Process isolation<br />
Chrome<br />
Low<strong>Box</strong><br />
. . .<br />
Microsoft modified _TOKEN structure<br />
A new syscall NtCreateLow<strong>Box</strong>Token to make a very limited token<br />
SepAccessCheck was slightly modified<br />
Checks if TOKEN::Flags & TOKEN IS IN APP CONTAINER<br />
(0x4000)<br />
(Current theory) add a new test: accessed object must contain either<br />
the current PackageSid or the well-known SID ”ALL APPLICATION<br />
PACKAGES”