YoVDO

Koadic C3 - Windows COM Command & Control Framework

Offered By: BSidesLV via YouTube

Tags

Security BSides Courses Cybersecurity Courses Penetration Testing Courses Sandboxing Courses VBScript Courses

Course Description

Overview

Explore the Windows COM Command & Control Framework Koadic C3 in this 48-minute conference talk from BSidesLV 2017. Delve into topics such as PowerShell Empire, VBScript, threading, HTML applications, and sandboxing. Learn about Run DLL 32, run commands, NTA hashes, and port scanning. Discover techniques for porting to Windows API and using PowerShell Empire. Watch a live demonstration of lateral movement and discuss potential mitigations. Gain valuable insights into advanced command and control techniques for Windows environments.

Syllabus

Intro
Agenda
PowerShell Empire
VBScript
Readline
Commands
Threading
HTML Applications
Run DLL 32
Run Commands
Sandboxing
NTA hashes
Port scanning
Porting to Windows API
Using PowerShell Empire
Demo
Moving laterally
Mitigations


Taught by

BSidesLV

Related Courses

Computer Security
Stanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network