YoVDO

Koadic C3 - Windows COM Command & Control Framework

Offered By: BSidesLV via YouTube

Tags

Security BSides Courses Cybersecurity Courses Penetration Testing Courses Sandboxing Courses VBScript Courses

Course Description

Overview

Explore the Windows COM Command & Control Framework Koadic C3 in this 48-minute conference talk from BSidesLV 2017. Delve into topics such as PowerShell Empire, VBScript, threading, HTML applications, and sandboxing. Learn about Run DLL 32, run commands, NTA hashes, and port scanning. Discover techniques for porting to Windows API and using PowerShell Empire. Watch a live demonstration of lateral movement and discuss potential mitigations. Gain valuable insights into advanced command and control techniques for Windows environments.

Syllabus

Intro
Agenda
PowerShell Empire
VBScript
Readline
Commands
Threading
HTML Applications
Run DLL 32
Run Commands
Sandboxing
NTA hashes
Port scanning
Porting to Windows API
Using PowerShell Empire
Demo
Moving laterally
Mitigations


Taught by

BSidesLV

Related Courses

Network Security
Georgia Institute of Technology via Udacity Proactive Computer Security
University of Colorado System via Coursera Identifying, Monitoring, and Analyzing Risk and Incident Response and Recovery
(ISC)² via Coursera Hacker101
HackerOne via Independent CNIT 127: Exploit Development
CNIT - City College of San Francisco via Independent