Connor McGarr | “Hey Cortana – Do We Still Care About Binary Exploitation?" | WWHF Deadwood 2022 | allinfosecnews.com

June 19, 2023, 11 a.m. | Wild West Hackin' Fest

Wild West Hackin' Fest www.youtube.com

Join us at the annual information security conference in Deadwood, SD (in-person and virtually) — Wild West Hackin' Fest: https://wildwesthackinfest.com/

Macro-laced Word documents, malicious HTAs, dumping LSASS, WMI, and Kerberoasting – the bread-and-butter of offensive security. Rarely do binary exploits fall under the purview of “standard” offensive toolkits. Why is this? This talk looks into contemporary exploit mitigations on Windows, such as control-flow integrity and code-signing, and how they affect the cost of developing exploits in today’s age. “Point-and-click” exploits …

age binary bread click code control cost documents dumping exploit exploits flow integrity lsass macro malicious mitigations offensive offensive security point security signing standard under windows wmi word

More from www.youtube.com / Wild West Hackin' Fest

Demystifying Design: Making Infosec Look Good | Caitlin Cash | WWHF 2023 1 day, 16 hours ago | www.youtube.com

can communication design easier +15

Exfiltrate and Command Network Nodes Like a Ghost! | Momen Eldawakhly | WWHF 2023 2 days, 16 hours ago | www.youtube.com

attackers basic can check +15

JS-Tap: Weaponizing JavaScript for Red Teams | Drew Kirkpatrick | WWHF 2023 3 days, 16 hours ago | www.youtube.com

applications beyond challenges custom +14

The Terminator Effect: AI's Role in Fighting Cyber Threats | James McQuiggan | WWHF 2023 4 days, 16 hours ago | www.youtube.com

accountability ai models architectures collaboration +28

Hacking Azure AD Identities Nestori Syynimaa | WWHF 2023 5 days, 16 hours ago | www.youtube.com

access access management azure azure ad +23

AD (Addie) and DNS (Dennis): A Match Made in Heck | Jim Sykora & Jake … 6 days, 16 hours ago | www.youtube.com

access active directory authentication computer +16

DevSecOps Worst Practices | Tanya Janca | WWHF 2023 1 week ago | www.youtube.com

best practices devops false positives pipeline +1

That Shouldn't Have Worked – An Intro to Evading AV/EDR | Corey Overstreet | WWHF … 1 week, 1 day ago | www.youtube.com

application attackers attacks change +10

Large Language Models: Disinformation and the Future of Work | Heather Lawrence | WWHF 2023 1 week, 2 days ago | www.youtube.com

campaigns computer computer security deal +13

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg

@ Hifield | Strasbourg, France

View on infosec-jobs.com

Lead Security Specialist

@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas

View on infosec-jobs.com

Consultant SOC / CERT H/F

@ Hifield | Sèvres, France

View on infosec-jobs.com