Coursera Plus Annual is 40% Off — Ends July 6.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Hiding C2 Communications in Plain Sight Using Windows Memory Page Permissions

x33fcon via YouTube

Start learning Write review
Coursera Ad

AI, Data Science & Cloud Certificates from Google, IBM & Meta

Learn More → CodeSignal Ad

2,000+ Free Courses with Certificates: Coding, AI, SQL, and More

Learn More →

Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off
One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.
Unlock All Certificates
Explore cutting-edge research on Windows Command and Control (C2) communications in this 36-minute conference talk from x33fcon. Learn advanced techniques for abusing Windows page guard permissions to conceal data and bypass named pipes, while developing a modular approach to C2 implementation. Discover how to circumvent EDR detection, leverage built-in Microsoft features, and implement C++ solutions for enhanced stealth. Gain practical insights into designing customizable and modular Windows C2 systems that operate under the radar, complete with code samples and implementation strategies. Examine existing research and emerging techniques for hiding communications in plain sight, with a focus on general methodologies that can be readily adapted to custom C2 tooling.

Syllabus

13. Gordon Long: Who Guards the Guards? Hiding your C2 Comms in Plain Sight

Taught by

x33fcon

Reviews

Start your review of Hiding C2 Communications in Plain Sight Using Windows Memory Page Permissions

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.