Reflected File Download - A New Web Attack Vector

Reflected File Download - A New Web Attack Vector

Black Hat via YouTube Direct link

Windows Calculator

7 of 42

7 of 42

Windows Calculator

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Reflected File Download - A New Web Attack Vector

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Las Vegas
  3. 3 Security conferences
  4. 4 Introduction
  5. 5 Agenda
  6. 6 About Me
  7. 7 Windows Calculator
  8. 8 What Happened
  9. 9 Why Reflected File Download
  10. 10 How Do We Trust Downloads
  11. 11 Conclusion
  12. 12 What is RFD
  13. 13 Download Reflected File
  14. 14 Final Result
  15. 15 Warning
  16. 16 Windows Security Feature Bypass
  17. 17 Batch File Bypass
  18. 18 Final Link
  19. 19 Example
  20. 20 Requirements
  21. 21 Where can we find it
  22. 22 Which exploit to use
  23. 23 Why work hard
  24. 24 Whitepaper
  25. 25 Advanced exploitation
  26. 26 PowerShell
  27. 27 Commandline Options
  28. 28 Chrome Setup
  29. 29 Build Exploit
  30. 30 Demo
  31. 31 Gmail
  32. 32 Verify download
  33. 33 Read emails
  34. 34 Cross social network warm
  35. 35 Cross social network warm demo
  36. 36 Googlecom warm demo
  37. 37 Use exact URL mappings
  38. 38 Whitelist callbacks
  39. 39 Remove support for path parameters
  40. 40 Summary
  41. 41 Quote
  42. 42 Questions

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.