Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Digital Vengeance - Exploiting Notorious C&C Toolkits

Cooper via YouTube

Overview

Explore the world of notorious Command and Control (C&C) toolkits in this 28-minute conference talk from Hack.lu 2017. Delve into the vulnerabilities of popular Remote Administration Tools (RATs) used in targeted attacks, including Gh0st RAT, Plug-X, and XtremeRAT. Learn how these weaknesses can be exploited to turn the tables on attackers, transforming the hunter into the hunted. Examine patterns in APT reports, discover exploits for remote execution and information disclosure, and gain insights into the ethics and legality of counter-attacks. Presented by Waylon Grange, an experienced reverse engineer and Senior Threat Researcher at Symantec, this talk covers topics such as RAT terminology, sophisticated attack hit lists, and post-exploitation techniques.

Syllabus

Intro
Disclaimer
The sophisticated attack
Hacking back
RAT terminology
Sophisticated attack hit list
APT1 & Poison Ivy
Xtreme Rat
Remote file upload
Remote file download
Ghost RAT
DLL side load vulnerability
Decode implant configs
Post exploitation

Taught by

Cooper

Reviews

Start your review of Digital Vengeance - Exploiting Notorious C&C Toolkits

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.