Payload Delivery for Initial Access in Red Team Engagement
Hack In The Box Security Conference via YouTube
Overview
Syllabus
Introduction
Jean Marie Bourbon
Overview
Personal Feedback
How to deal with a limited attack surface
Why did they change the password
Mitigation and constraints
TTP version and bypasses
Short example
Magic
Shell code customization
Browser exploit
Use a valid user agent
Use strong authentication mechanism
Dont wait to investigate
Demo
Taught by
Hack In The Box Security Conference