>Windows Exploitation Tricks: Abusing the User-Mode Debugger
...and...
>Nothing I’ve described here is a security vulnerability, but the behavior is interesting and it’s worth looking out for cases where it could be used.
Maybe I'm misunderstanding this newfangled internets but isn't exploitation generally synonymous with security vulnerability?
JFYI, for anyone who's interested, the equivalent debugging API methods in .NET could be found in ClrMd[0] but it's as unyielding a beast as the native methods.
User mode debugging is an area that any present or future OS designer should be concerned about getting right in terms of debugging features vs. security implications...
>Windows Exploitation Tricks: Abusing the User-Mode Debugger
...and...
>Nothing I’ve described here is a security vulnerability, but the behavior is interesting and it’s worth looking out for cases where it could be used.
Maybe I'm misunderstanding this newfangled internets but isn't exploitation generally synonymous with security vulnerability?
JFYI, for anyone who's interested, the equivalent debugging API methods in .NET could be found in ClrMd[0] but it's as unyielding a beast as the native methods.
[0] - https://github.com/microsoft/clrmd