Learn AI, Data Science & Business — Earn Certificates That Get You Hired
AI Engineer - Learn how to integrate AI into software applications
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore the world of notorious Command and Control (C&C) toolkits in this 28-minute conference talk from Hack.lu 2017. Delve into the vulnerabilities of popular Remote Administration Tools (RATs) used in targeted attacks, including Gh0st RAT, Plug-X, and XtremeRAT. Learn how these weaknesses can be exploited to turn the tables on attackers, transforming the hunter into the hunted. Examine patterns in APT reports, discover exploits for remote execution and information disclosure, and gain insights into the ethics and legality of counter-attacks. Presented by Waylon Grange, an experienced reverse engineer and Senior Threat Researcher at Symantec, this talk covers topics such as RAT terminology, sophisticated attack hit lists, and post-exploitation techniques.
Syllabus
Intro
Disclaimer
The sophisticated attack
Hacking back
RAT terminology
Sophisticated attack hit list
APT1 & Poison Ivy
Xtreme Rat
Remote file upload
Remote file download
Ghost RAT
DLL side load vulnerability
Decode implant configs
Post exploitation
Taught by
Cooper