BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.pass-the-salt.org//pts2025//talk//XE9K9T
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-pts2025-XE9K9T@cfp.pass-the-salt.org
DTSTART;TZID=CET:20250703T095000
DTEND;TZID=CET:20250703T101000
DESCRIPTION:Named Pipes are interprocess communication primitives used by m
 any Windows applications.\nHowever\, these operating system APIs are often
  blindly trusted\, and one can intercept and tamper with transmitted data 
 by abusing a Man-in-the-Middle setup.\nCommonly admitted mitigations impli
 es checking process IDs\, executable signatures or permissions on the name
 d pipe. With proper tooling\, such mitigations can be bypassed.\n\nThis pr
 esentation will delve into Windows Named Pipes APIs while highlighting com
 mon attacks\, usual mitigations\, and how to bypass them using the soon-to
 -be-opensource tool thats_no_pipe.
DTSTAMP:20260512T151628Z
LOCATION:Amphitheater 122
SUMMARY:Hooking Windows Named Pipes with thats_no_pipe - Thomas Borot (Pent
 ester @Synacktiv)
URL:https://cfp.pass-the-salt.org/pts2025/talk/XE9K9T/
END:VEVENT
END:VCALENDAR