Due to its extensibility, Windows Vista presents a huge opportunity for security-minded hackers (and consultants). Various capabilities of the operating system are now exposed to programmers via plug-ins and easier-to-use APIs. I'll demo some examples we've been working on:
a. Crypto - demo adding Twofish cipher support to Windows
b. Windows Firewall - demo why the default rule set for a new application is insecure, and how to fix it.
c. IPsec - demo an IPv6-compatible command-line debugging tool which dumps out various negotiated parameters between two peers
