all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Client-Side Exploitation: abusing WebDAV+URL+LNK to Deliver Malicious Payloads

Add to bookmarks
April 8, 2024, 9:55 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

A look at the offensive and defensive angles. 


What is WebDav? 


Attackers often place malicious payloads on remote servers, which are then downloaded and executed on the user’s PC using scripts or other methods. One type of server attackers can leverage is WebDAV (Web Distributed Authoring and Versioning) — a file transfer protocol built on top of HTTP. 


In this article, we’ll explore how an attack is carried out from the offensive perspective, and then examine how to detect and …

abusing attackers can client client-side defensive distributed exploitation file file transfer lnk malicious malicious payloads offensive payloads scripts server servers transfer url versioning web webdav what is

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

AI's Offensive & Defensive Impacts an hour ago | malware.news
alto blog cybersecurity defensive +11
Cyberattack against United Russia claimed by Ukraine an hour ago | malware.news
attack cyberattack distributed initiative +14
US jails former NSA employee for attempting secret sale to Russia an hour ago | malware.news
agency article confidential defense +25
Better identity threat detection sought by new Semperis ML-based tool an hour ago | malware.news
and response article detection detection and response +27
Red Hat's latest enterprise Linux delivers new features to tackle hybrid-cloud complexity 2 hours ago | malware.news
addition article cloud complexity +13
NASA doesn't know if its spacecraft have adequate cyber defenses, GAO warns 3 hours ago | malware.news
agency article best practices cyber +11
US warns of Russian hackers targeting operational technology in water systems 3 hours ago | malware.news
advisory breached hackers official +10
Senators grill UnitedHealth CEO on Change Healthcare cyberattack 3 hours ago | malware.news
article ceo change change healthcare +13
‘Uncharted Territory:’ Companies Devise AI Security Policies 4 hours ago | malware.news
ai security businesses companies don +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Azure DevSecOps Cloud Engineer II

@ Prudent Technology | McLean, VA, USA
View on infosec-jobs.com

Security Engineer III - Python, AWS

@ JPMorgan Chase & Co. | Bengaluru, Karnataka, India
View on infosec-jobs.com

SOC Analyst (Threat Hunter)

@ NCS | Singapore, Singapore
View on infosec-jobs.com

Managed Services Information Security Manager

@ NTT DATA | Sydney, Australia
View on infosec-jobs.com

Senior Security Engineer (Remote)

@ Mattermost | United Kingdom
View on infosec-jobs.com

Penetration Tester (Part Time & Remote)

@ TestPros | United States - Remote
View on infosec-jobs.com
View more jobs