Overview
Syllabus
Intro
About this talk
About Victim
Email Conversation
Web Browsing
Exploit
Response
Prepare Weapons
Prepare Infra
Hack Accounts
University Accounts
Prepare Website
Script on Fake Website
Prepare John Doe
Start Operation
Operation: Evaluate Targets
Operation: Goal
Blue Team Downsides
Blue Team Weapons
Pain Point for Blue Team
Breadcrumbs for Blue Team
Stage 1 - Overview
Stage 1 - NETWIRE
Stage 1 - variants
Stage 2 - Overview
Previous Analysis
Initial Compromise
Favorite Method
Favorite VPS
Conclusion - Attackers
Conclusion - Countermeasure
Questions?
Taught by
Hack In The Box Security Conference