https://miscreants.github.io/blog.trailofbits.com/authors/andy-ying/Recent content in Andy Ying on The Trail of Bits BlogHugoen-usThu, 23 Aug 2018 07:50:39 -0400https://miscreants.github.io/blog.trailofbits.com/2018/08/23/introducing-windows-acl-working-with-acls-in-rust/Thu, 23 Aug 2018 07:50:39 -0400https://miscreants.github.io/blog.trailofbits.com/2018/08/23/introducing-windows-acl-working-with-acls-in-rust/Access Control Lists (ACLs) are an integral part of the Microsoft Windows security model. In addition to controlling access to secured resources, they are also used in sandboxing, event auditing, and specifying mandatory integrity levels. They are also exceedingly painful to programmatically manipulate, especially in Rust. Today, help has arrived — we released windows-acl, a […]https://miscreants.github.io/blog.trailofbits.com/2017/08/02/microsoft-didnt-sandbox-windows-defender-so-i-did/Wed, 02 Aug 2017 06:50:55 -0400https://miscreants.github.io/blog.trailofbits.com/2017/08/02/microsoft-didnt-sandbox-windows-defender-so-i-did/Microsoft exposed their users to a lot of risks when they released Windows Defender without a sandbox. This surprised me. Sandboxing is one of the most effective security-hardening techniques. Why did Microsoft sandbox other high-value attack surfaces such as the JIT code in Microsoft Edge, but leave Windows Defender undefended? As a proof of concept, […]