YouTube magic that brings views, likes and suibscribers
AnimalsBabiesBeautifulCatsCreativeCute Dogs EducationalFunnyHeartwarmingHolidaysIncredible
Inspirational Interesting LoveMusicNatureOopsPerformancePranksScienceSportsTechnologyUnexpected
 Best Cat Videos  Watch Dog Videos  Cover Song Contest
Get Free YouTube Subscribers, Views and Likes

Bypassing Antivirus: With Understanding Comes Ease | Jeff McJunkin | WWHF Deadwood 2020 Virtual

Follow
Wild West Hackin Fest

Bypassing Antivirus: With Understanding Comes Ease
00:00 Japan Based Banter
03:09 Bypassing Antivirus with Jeff McJunkin
03:46 The Three Seashells
08:22 WHOAMSI
09:35 Fundamental Limitations of AV
12:46 False Positives False Negatives
16:31 DEMO: Mimikatz with Static Signatures
32:17 Disadvantages for Security Professionals
36:21 Antivirus Bypass Methods
46:53 Application Control
49:56 A Better Approach With A.V.
54:28 A.V.’s Own Attack Surface
55:48 Closing Statement

Join the WWHF Discord Community –   / discord  

The job of a penetration tester is to emulate realworld, realistic adversaries to compromise the client and explain the business risks of the technical findings. Those pesky realworld adversaries bypass AV all the time, even with essentially the same malware, over and over.

How do they do it? Simple. By understanding what traps AV is setting, you can step around, jump over, or disable those traps before sauntering to your destination unhindered. I can't help with your saunter, but I can help you understand and bypass AV using arbitrary payloads (whether Cobalt Strike, Metasploit, Covenant, Mystic, SILENTTRINITY, or whichever) in many ways, all in less than an hour.


Jeff McJunkin is the founder of Rogue Valley Information Security, a consulting firm specializing in penetration testing and red team engagements. Jeff has a long background in systems and network administration that he leveraged into web and network penetration testing, especially involving Active Directory. He has taught dozens of classes in network penetration testing for the SANS Institute and is the author of the "Metasploit Kung Fu for Enterprise Pen Testing" course. He specializes in not only finding endtoend realistic attack scenarios for clients, but also in helping technical staff as well as senior leadership in understanding the attack, its ramifications, detective controls, and assisting in safe remediation. Jeff has competed in many security competitions and has won many of them, along with designing and presenting several iterations of the SANS Core NetWars Tournaments to thousands of attendees.

posted by nojevik


Offensive Maldocs in 2020 | Joe Leon & Matt Grandy | 1 Hour | 4K
Offensive Maldocs in 2020 | Joe Leon & Matt Grandy | 1 Hour | 4K
#HITB2022SIN EDR Evasion Primer For Red Teamers Jorge Gimenez & Karsten Nohl
#HITB2022SIN EDR Evasion Primer For Red Teamers Jorge Gimenez & Karsten Nohl
Evading AV and Using Covenant C2
Evading AV and Using Covenant C2
Antimalware Scan Interface (AMSI)
Antimalware Scan Interface (AMSI)
'OpenTelemetry, Databases, and Machine Learning: Troubleshoot Like a Pro' with Adam Furmanek
'OpenTelemetry, Databases, and Machine Learning: Troubleshoot Like a Pro' with Adam Furmanek
Defeating EDR's using D/Invoke
Defeating EDR's using D/Invoke
Workshop: Automating Attacks | Alex Martirosyan | WWHF 2023
Workshop: Automating Attacks | Alex Martirosyan | WWHF 2023
103 Noob 101 Practical Techniques for AV Bypass Jared Hoffman
103 Noob 101 Practical Techniques for AV Bypass Jared Hoffman
MVPDays Sneaky Defense Evasion. Windows 10 security bypassed
MVPDays Sneaky Defense Evasion. Windows 10 security bypassed
Elevating your Windows Privileges Like a Boss! Jake Williams
Elevating your Windows Privileges Like a Boss! Jake Williams
Red Teaming in the EDR age
Red Teaming in the EDR age
Free Hacking API courses (And how to use AI to help you hack)
Free Hacking API courses (And how to use AI to help you hack)
Develop Your Own RAT: EDR + AV Defense by Dobin Rutishauser
Develop Your Own RAT: EDR + AV Defense by Dobin Rutishauser
License to Kill: Malware Hunting with the Sysinternals Tools
License to Kill: Malware Hunting with the Sysinternals Tools
AV Evasion Mimikatz
AV Evasion Mimikatz
DEF CON 30 Kyle Avery Avoiding Memory Scanners Customizing Malware to Evade YARA, PEsieve
DEF CON 30 Kyle Avery Avoiding Memory Scanners Customizing Malware to Evade YARA, PEsieve
Magnets for Needles in Haystacks: Using MITRE ATT&CK w/ RiskBased Alert | Haylee Mills | WWHF 2023
Magnets for Needles in Haystacks: Using MITRE ATT&CK w/ RiskBased Alert | Haylee Mills | WWHF 2023
AMSI & Bypass: Review of Known AMSI Bypass Techniques and Introducing a New One
AMSI & Bypass: Review of Known AMSI Bypass Techniques and Introducing a New One
HEK.SI 2022 Bypassing UAC With UACMe
HEK.SI 2022 Bypassing UAC With UACMe
Windows Defense Evasion Techniques | Red Team Series 713
Windows Defense Evasion Techniques | Red Team Series 713
Recommended
Your New Year's Resolutions: New Edition
Your New Year's Resolutions: New Edition
04:36
Hilarious Monkey Kisses A Cat Against His Will
Hilarious Monkey Kisses A Cat Against His Will
00:52
Alex Superman Johnson Made A True Superproposal!
Alex Superman Johnson Made A True Superproposal!
02:03
The Game Of Carpets - Who Is Your Worst Enemy?
The Game Of Carpets - Who Is Your Worst Enemy?
01:04
Best Way To Take A Nap While Walking
Best Way To Take A Nap While Walking
00:28
How Stylish Is Yoru Body Paint?
How Stylish Is Yoru Body Paint?
06:20
Are You Ready To Climb El Capitan Right Now?
Are You Ready To Climb El Capitan Right Now?
04:48
Cameraman Proved To Be Better Than Tree!
Cameraman Proved To Be Better Than Tree!
00:40
AnimalsBabiesBeautifulCatsCreativeCute Dogs EducationalFunnyHeartwarmingHolidaysIncredible
Inspirational Interesting LoveMusicNatureOopsPerformancePranksScienceSportsTechnologyUnexpected
 Watch Cute Cats  Dog Show  Music Talent Competition
doovi © | 2014-2018
YouTube Subscribers Stats
Viral YouTube Promotions
Follow us at Facebook
Terms of Service
Follow us at YouTube
Powered by