Suborner - Windows Bribery for Invisible Persistence

Explore an innovative Windows persistence technique called the Suborner Attack in this conference talk from the Hack In The Box Security Conference. Discover how attackers can create hidden machine accounts with custom credentials and properties, bypassing traditional detection mechanisms. Learn how this method allows for stealthy impersonation of any account without triggering common security alerts. Witness a live demonstration of the attack against the latest Windows version, showcasing its effectiveness in evading detection. Gain insights from security specialist Sebastián Castro, an experienced pentester, red teamer, and vulnerability researcher, as he shares his expertise on this advanced persistence technique. Understand the implications for Windows security and potential countermeasures against this sophisticated attack vector.

#HITB2022SIN Suborner: Windows Bribery For Invisible Persistence - Sebastian Castro