A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Subscribestar or Patreon

Search Irongeek.com:

Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:


Improving CACTUSTORCH payloads - Ryan Linn Derbycon 2019 (Hacking Illustrated Series InfoSec Tutorial Videos)

Improving CACTUSTORCH payloads
Ryan Linn
Derbycon 2019

CACTUSTORCH has become a favorite phishing tool for many folks performing phishing to get payloads into organizations. This talk will discuss how to use the Bettertorch code that was released earlier this year along with improved COM object code that will be released with this talk to further improve phishing payloads through maldocs. There will be a discussion of what has been added, what additional features it provides, and how to use it for detection avoidance. We?ll also discuss how the code is laid out and some of the requirements to add to this project so that you can make it your own and further improve bypass capabilities.

Ryan Linn has a background in red teaming, penetration testing, incident response, and forensics that has helped him to understand many of the challenges that security practitioners face today. He enjoys sharing this knowledge at places like DefCon, BlackHat, DerbyCon and many others. He has helped train individuals in corporate security, law enforcement, and federal governments around the world on hacking and incident response techniques. Ryan is one of the authors Gray Hat Hacking and has contributed to many open source frameworks including Metasploit, BeEF and Ettercap.


Back to Derbycon 2019 video list

Printable version of this article

15 most recent posts on Irongeek.com:

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast