Overview
Explore cutting-edge hacking techniques and their countermeasures in this live demonstration session from RSA Conference. Witness firsthand as experts Stuart McClure and Brian Robison showcase various attack methods, including file-based, memory-based, fileless, living off the land, script-based, and application-based hacks, all of which bypass current NextGen security solutions. Gain valuable insights into defending against these advanced threats, learn from real-time hacking scenarios, and contribute your own attack techniques to the discussion. Delve into topics such as Cactus Torch, MSHDA, payload creation, HTTP mirroring, VB scripting, and memory exploitation. Understand the intricacies of vulnerabilities, Metasploit usage, and firewall bypassing techniques. Suitable for those with basic programming knowledge and an understanding of hacking fundamentals, this 52-minute session provides a comprehensive look at the evolving landscape of cybersecurity threats and defenses.
Syllabus
Intro
Oldschool techniques
Cactus Torch
MSHDA
Creating the payload
HTTP
Mirroring
Creating the Client
Executing the Web Client
Creating the Client Text
Building the Document
VB Script
Cows
Enabling Content
Playing in Memory
The Attack
Vulnerability
The Goal
Metasploit
Fun
Simple
Failure
What Happened
Brians Idea
Brians Mistake
Timer
Cleanup
Update
FTP Server
Python Program
Firewalling
Conclusion
Taught by
RSA Conference