Less SmartScreen More Caffeine: ClickOnce (Ab)Use for Trusted Code Exe. | Nick Poweres & Steven Flores | WWHF Deadwood 2022 from c2 consulting Watch Video
Preview(s):
Gallery
Play Video: (Note: The default playback of the video is HD VERSION. If your browser is buffering the video slowly, please play the REGULAR MP4 VERSION or Open The Video below for better experience. Thank you!)
⏲ Duration: 28 min 23 sec ✓ Published: 22-Dec-2022
Description: Initial access payloads have historically had limited methods that work seamlessly in phishing campaigns and can maintain a level of evasion. This payload category has been dominated by Microsoft Office types, but as recent news from Microsoft has shown, the lifespan of even this technique is shortening. As greatly overlooked vehicle for initial access, ClickOnce is very versatile and has a lot of opportunities for maintaining a level of evasion and obfuscation. In this talk we’ll cover method
Play Video: (Note: The default playback of the video is HD VERSION. If your browser is buffering the video slowly, please play the REGULAR MP4 VERSION or Open The Video below for better experience. Thank you!)