Dave Sully
Paul Spicer and Dave Sully are both Senior Red Team Consultants for Google Mandiant. As part of Mandiant’s APT66, they primarily work on red and purple team assessments and adversary simulations. Dave has over 25 years of experience in the IT sector with an extensive background in information technology across a wide range of roles prior to specialising in Cyber Security in 2016.
Session
10-17
18:45
15min
Bring Your Own AppDomain: Finding and (ab)using trusted .NET binaries for initial access and more - Abridged
Paul Spicer, Dave Sully
Join as we discuss how to hijack trusted .NET binaries and find the perfect binary for your Red Team engagement.
Specifically, this talk will cover the background on:
- How to build your own .NET hijacking tool to launch malicious DLLs on Windows systems.
- Leveraging VirusTotal to identify the perfect trusted .NET binary for your target environment.
Tramshed Tech