Payload Delivery for Initial Access in Red Team Engagement

Explore advanced payload delivery techniques for initial access in red team engagements through this comprehensive conference talk. Delve into strategies for dealing with limited attack surfaces, understanding password changes, and navigating mitigation constraints. Learn about TTP versions and bypasses, and gain insights from a short example. Discover the intricacies of MagicShell code customization and browser exploits. Understand the importance of using valid user agents and implementing strong authentication mechanisms. Emphasize the need for prompt investigation. Witness a practical demonstration that brings these concepts to life, enhancing your understanding of sophisticated red team tactics.

Introduction
Jean Marie Bourbon
Overview
Personal Feedback
How to deal with a limited attack surface
Why did they change the password
Mitigation and constraints
TTP version and bypasses
Short example
Magic
Shell code customization
Browser exploit
Use a valid user agent
Use strong authentication mechanism
Dont wait to investigate
Demo