A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
ISDPodcast Button
RootSecure Button
Social-engineer-training Button
Irongeek Button

Web Hosting:
Dreamhost Logo
Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Owning Computers Without Shell Access - Royce Davis Derbycon 2013 (Hacking Illustrated Series InfoSec Tutorial Videos)

Owning Computers Without Shell Access - Royce Davis
Derbycon 2013

Description: “For many years Penetration Testers have relied on gaining shell access to remote systems in order to take ownership of network resources and enterprise owned assets. AntiVirus (AV) companies are becoming increasingly more aware of shell signatures and are therefore making it more and more difficult to compromise remote hosts. The current industry mentality seams to believe the answer is stealthier payloads and super-complex obfuscation techniques. I believe a more effective answer might lie in alternative attack methodologies involving authenticated execution of native Windows commands to accomplish the majority of shell reliant tasks common to most network level penetration tests. The techniques I will be discussing were developed precisely with this style of attack in mind. Using these new tools, I will demonstrate how to accomplish the same degree of network level compromise that has been enjoyed in the past with shell-based attack vectors, while avoiding detection from AV solutions and leaving little to no trace of presence on target systems. “

Bio: Royce Davis is a Senior Consultant on the Accuvant LABS Enterprise Tactical Attack & Penetration team. He has several years of professional experience in Information Security. Specializing in Network-Level Penetration and Red Team exercises, Royce has lead numerous engagements for clients in several industries over the past three years while also obtaining certifications from Offensive Security and the SANS institute. In 2011 Royce co-founded the pentestgeek.com website. Royce has written code for open source security projects such as the Metasploit Framework and is also the author of the Jigsaw.rb Email Address Harvesting tool. Royce holds an Associate of Applied Science degree from Dakota County Technical College in Information Systems Management.

Slides here:
http://www.slideshare.net/RoyceDavis1/owning-computers-without-shell-access-dark

Back to Derbycon 2013 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2014, IronGeek
Louisville / Kentuckiana Information Security Enthusiast