Offensive Javascript Techniques for Red Teamers
Offered By: Security BSides San Francisco via YouTube
Course Description
Overview
Explore advanced offensive JavaScript techniques for red teamers and security professionals in this 42-minute conference talk from BSidesSF 2021. Delve into the world of post-exploitation and lateral movement using browser-based attacks, focusing on methods that work quickly before a victim closes a tab. Learn about new JavaScript features that enable sophisticated threat actors to craft payloads targeting internal network vulnerabilities. Discover reconnaissance techniques traditionally used post-malware implant that can now be applied pre-implant from a browser. Examine real-world examples of external payloads targeting internal assets at large companies, and gain insights into the responsible disclosure process for intranet-facing bugs. This updated version of a previously presented talk offers valuable knowledge for red teamers, penetration testers, and anyone interested in advanced web-based attack techniques.
Syllabus
BSidesSF 2021 - Offensive Javascript Techniques for Red Teamers (Dylan Ayrey • Christian Frichot)
Taught by
Security BSides San Francisco
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network