Vyacheslav Rusakov – WindowsTechs.com

A Modern Hypervisor as a Basis for a Sandbox

Posted on September 19, 2017 by Vyacheslav Rusakov

In the field of information security, sandboxes are used to isolate an insecure external environment from a secure internal environment (or vice versa), to protect against the exploitation of vulnerabilities, and to analyze malicious code. At Kaspersky Lab, we have several sandboxes, we will look at just one of them that was customized to serve the needs of a specific product and became the basis of Kaspersky Anti Targeted Attack Platform. Continue reading A Modern Hypervisor as a Basis for a Sandbox→

Malicious code and the Windows integrity mechanism

Posted on November 28, 2016 by Vyacheslav Rusakov

My goal wasn’t to review the techniques of elevating system privileges. Here, I wanted to look at the overall picture and talk about the whole range of Windows operating systems in all their diversity dating back to Windows Vista, but without discussing specific versions. Continue reading Malicious code and the Windows integrity mechanism→