ClickOnce and You're in - When Appref-ms Abuse is Operating as Intended
Offered By: Black Hat via YouTube
Course Description
Overview
Explore the intricacies of .appref-ms files and their potential for malicious exploitation in this 25-minute Black Hat conference talk. Dive deep into the functionality and operation of these files, uncovering methods to leverage them for nefarious purposes. Gain insight into the user experience during execution and learn additional techniques to enhance and conceal malicious capabilities. Examine topics such as ClickOnce technology, application deployment, lateral movement, and command and control management, complete with a live demonstration. Walk away with three key takeaways to better understand and defend against this potential security threat.
Syllabus
Intro
Speaker Introduction
The End of the Golden Age
A New Light Arises
A ClickOnce Summary
Application Deployment
Lateral Movement Rundown
C2 Management - Demo
3 Takeaways
Taught by
Black Hat
Related Courses
Software Engineering for SaaSUniversity of California, Berkeley via Coursera Déployez des applications dans le cloud avec IBM Bluemix
IBM via OpenClassrooms Machine Learning Capstone: An Intelligent Application with Deep Learning
University of Washington via Coursera Introducción al desarrollo de videojuegos con Unity3D
Universitat Jaume I via Independent Developing Microsoft Azure Solutions
Microsoft via edX