Deep technical talk, presented at POC x Zer0Con offensive security conference in November 2020. Abstract This talk is a journey from the top of the research hill, starting with a big picture of modern hypervisors offensive security landscape with nowadays' unique challenges and blank spaces, down to deep undocumented internals of an essential kernel-level component of one of the world's hardest hypervisors. As part of the talk, details of a curious vulnerability that I found in Microsoft Hyper-V will be exposed for the first time. Author Alisa Esage is an independent vulnerability researcher and low-level hacker, founder of Zero Day Engineering Trainings [zerodayengineering.com]. She was awarded Zero Day Initiative Silver bounty hunter 2018, Phrack magazine author 2015, won the "Critical infrastructure attack" competition 2014, was recognized in the "Halls of Fame" of multiple major software vendors' security bounty programs for discovering zero-day vulnerabilities, and is a winner Pwn2Own Vancouver 2021 Training Hypervisor Vulnerability Research: https://zerodayengineering.com/training/hypervisor-vulnerability-research.html

Deep technical talk, presented at POC x Zer0Con offensive security conference in November 2020. Abstract This talk is a journey from the top of the research hill, starting with a big picture of modern hypervisors offensive security landscape with nowadays' unique challenges and blank spaces, down to deep undocumented internals of an essential kernel-level component of one of the world's hardest hypervisors. As part of the talk, details of a curious vulnerability that I found in Microsoft Hyper-V will be exposed for the first time. Author Alisa Esage is an independent vulnerability researcher and low-level hacker, founder of Zero Day Engineering Trainings [zerodayengineering.com]. She was awarded Zero Day Initiative Silver bounty hunter 2018, Phrack magazine author 2015, won the "Critical infrastructure attack" competition 2014, was recognized in the "Halls of Fame" of multiple major software vendors' security bounty programs for discovering zero-day vulnerabilities, and is a winner Pwn2Own Vancouver 2021 Training Hypervisor Vulnerability Research: https://zerodayengineering.com/training/hypervisor-vulnerability-research.html