This event has ended. Visit the official site or create your own event on Sched.
Back To Schedule
Saturday, October 12 • 11:15am - 12:00pm
PR-3021 Bypassing Python 3.8 Audit Hooks

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

In Python 3.8, which is scheduled to be released October 2019, a new security feature is being implemented called “audit hooks”. According to PEP 578 and PEP 551, the purpose of audit hooking is to allow transparency into Python’s runtime so that events can be monitored and logged just like any other process. While additional insight is great for defenders, it's likely to become another hurdle for attackers to deal with. I dunno about y'all but I'm trying to run scripts unabated, feel me? Y'all tryna bypass these audit hooks or nah? Come through.

avatar for Leron Gray

Leron Gray

Security Software Engineer, Microsoft
Leron (aka daddycocoaman) is a ten year Navy veteran and former NSA operator with several years of offensive security experience. He's currently works on the Azure Red Team at Microsoft, loves winning all the CTFs, and enjoys writing things in Python and Python-like languages. He's... Read More →

Saturday October 12, 2019 11:15am - 12:00pm CDT
BONHAM 3-C | Expert 1 600 E Market St, San Antonio, TX Floor 3