Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Invoke-DOSfuscation - Techniques for S-level CMD Obfuscation

Hack in Paris via YouTube

Overview

Explore advanced CMD obfuscation techniques in this 43-minute talk from Hack in Paris. Delve into the evolving landscape of attack vectors and obfuscation methods used by skilled attackers to evade detection. Learn about the shift in tradecraft towards languages offering less visibility to defenders, and examine real-world examples from APT and FIN threat actors. Discover cmd.exe's unexplored obfuscation capabilities, including string replacement, argument hiding, and novel encoding techniques. Gain insights into obfuscating binary names and lesser-known cmd.exe replacement binaries. Witness a live demonstration of the Invoke-DOSfuscation framework, which implements multi-layered obfuscation techniques for cmd.exe payloads. Conclude with a discussion on detection implications and approaches for this genre of obfuscation.

Syllabus

HIP18 - Talk 07 - Invoke-DOSfuscation: Techniques FOR %F IN (-style) DO (S-level CMD Obfuscation)

Taught by

Hack in Paris

Reviews

Start your review of Invoke-DOSfuscation - Techniques for S-level CMD Obfuscation

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.