Hank Chen - CYBERSEC 2023

Hank Chen

TXOne Networks Threat Researcher

Hank Chen is currently working as an information security threat researcher at TXOne Networks. He is passionate about vulnerability disclosure and exploitation, malware analysis, and product security. He has reported CVE and is also keen on CTF. He is a member of 10sec and TSJ teams. He is focus on Crypto , Reverse and Pwn challenge. He also holds OSCP. He was a teaching assistant for the National Tsing Hua University cryptography course, a teaching assistant for the Information Security Center of Excellence (CCoE) project, and a lecturer for the cyber security training of Ministry of National Defense. He also spoked at many cybersecurity conference, such as Black Hat USA , FIRST, CODE BLUE, HITCON, ThreatCon.

SPEECH

05/10 (Wed.) 14:45 - 15:15

Threat Research Forum 4F 4B

Watch Out! Notorious Windows Potatoes is Coming. Dissect 5 Different Attack Based on MS-RPCE

In recent years, attacks against Windows RPC have been increasing day by day. when developers use Windows API, they often do not pay attention on the privilege management of the underlying MS-RPCE, and even the official system services developed by Microsoft based on the MS-RPCE interface also have this type of vulnerability.

This agenda will analyze the various Potato-named tools commonly used in penetration testing one by one, and propose the corresponding Mitigation, as well as how to examine the software vulnerabilities of MS-RPCE lacking proper privilege management.

MORE SPEAKERS

All Speakers

Billy

Crypto.com
Application Security Engineer

Sky Yu

Edgio
SENIOR SECURITY SOLUTIONS ARCHITECT-APEC Lead