How Hackers Evade Program Allowlists with DLLs

Показать описание

🔥 YOUTUBE ALGORITHM ➡ Like, Comment, & Subscribe!

Рекомендации по теме

Комментарии

I love that Nim is in this picture. It is such a nice little language that sadly gets attention by bad actors

tea_otomo

yes please, more nim content. thank you for your service

jasonv

I'm a Python guy, so seeing that style of syntax used on lower level winapi stuff is sick! I'd love to see more Nim stuff in the future. So unfortunate a powerful lang with a familiar syntax has a bad rep.

ltrwnrs

Your videos feels like 5 minute long. Your method of explaining is so much interesting and captivating, sure do love to see more nim action.

gamingandanime

Nim deserves more community attention. Although I don't think they would be happy to hear they are again being used to develop malware. Anti-malwares are already flagging them as malware because so many people are using it to that end :D

PouriyaJamshidi

Yes! We want more Nim. I've never used it, and would like to know more about it and how it's being used in the security space. 😊

whoismikeyuk

Thank you! Absolutely need more cool stuff in NIM.

DrorDvash

I've been interested in learning Nim, so I'm definitely interested in seeing more

whamer

That Right of Boom shirt though... IYKYK

networkhound

Why do people use Nim instead of Python? First time I've ever heard of Nim and am curious

xntumrfoivrnwf

And now using Nim language, John, you now have my full attention.

guilherme

Why on earth have I never heard about Nim???

zanidd

Would love to see more stuff on nim and DLLs!

fdert

John, you are just firing off videos here lately, I love it. Thanks!!

EastCoastScott

I know C++ and rust quite well. Should i learn nim for offensiveNim or ofRust, OfCpp will do the work?

rdmPerson

So this is a persistence mechanism, not an initial access vector?

logiciananimal

Isn't there a program out there that can scan all the .dll files on a system or in a folder, checking them for malicious activities?

SafeKilosJoinHeroes

It's the first time I even heard from nim. Looks easy to have fun with. But dll sideloading is hard, for most apps you have to be able to write into a directory of the app, but it's a possible way. But this is hard compared to just start an exe and then, you filter out script kiddie attacks.

Spelter

I weep for the day when all my Nim payloads get flagged. Every other week it seems like more and more effort is required to keep them working, pre-obfuscation.

henryhuevo

very nice and easy to understand, thank you

b-ijgf

How Hackers Evade Program Allowlists with DLLs

How Hackers Evade Program Allowlists with DLLs

How Hackers Evade Program Allowlists with DLLs

How Hackers Can Bypass Your Security Defenses

Understanding and Re creating Process Injection Techniques through Nimjector by Ariz Soriano

DLL Hijacking

The Beginner's Guide to Phishing Using DLL Hijacking | Abusing Windows Defender

How to Trick Hackers & Web Crawlers with Spidertrap

RCE via deserialization with a class allowlist bypass and DNS exfiltration with Arthur Aires

DLL Hijacking Client Side Exploit

Weaponizing Windows Allow Listing (WDAC) To Kill EDR

AASLR: Intro to DLL Sideloading | Greg Hatcher & John Stigerwalt

How Hackers Use netsh.exe For Persistence & Code Execution (Sliver C2)

Dll Proxying

Fun With DLL's - Hijacking, Proxying, and Malware Development

Unveiling Mac Security: A Comprehensive Exploration of Sandboxing and AppData TCC

DLL Hijacking attack - Theory and Exploitation

$203,000 bounties for 4 bugs in Azure Health Bot - 2x RCE, path traversal, memory leak

What Is Allowlisting? - CryptoBasics360.com

DLL Proxying: The Secret Weapon for Hackers Exploiting DLL Hijacking

How Hackers Persist & Privesc in Microsoft 365

MongoDB x86_64 - DLL Hijacking vulnerability

Chapter 7 DLL Hijacking

Quasar RAT Exploits DLL Side-Loading for Covert Operations

PowerShell CRYPTOSTEALER through DNS