Dailydave mailing list archives
Tactical OPSEC in INNUENDO
From: Dave Aitel <dave.aitel () gmail com>
Date: Wed, 15 Feb 2017 16:33:39 +0000
https://vimeo.com/200421115 If you have ten minutes in some line at RSAC, and you want to see a great video, then click that link above. :) The summary is this: You only want your implant to use the web for C2 when there are people using the web! No implant should be going out over HTTPS when everyone in the office is at home watching Desperate Housewives of Pyongyang! One mantra we have when building INNUENDO is that OPSEC is often much easier to say than to code, and the goal of the INNUENDO API is to make that gap as small as possible. You get to see just how little code we had to write to do this simple version in the video, so it's well worth your time, I hope! :) -dave
_______________________________________________ Dailydave mailing list Dailydave () lists immunityinc com https://lists.immunityinc.com/mailman/listinfo/dailydave
Current thread:
- Tactical OPSEC in INNUENDO Dave Aitel (Feb 15)