دوره SpecterOps – Adversary Tactics: Vulnerability Research for Operators

In Adversary Tactics: Vulnerability Research for Operators, you will learn an operator-focused approach to find the vulnerabilities needed to escalate privileges, execute arbitrary code, or facilitate lateral movement in Windows environments. We will give you the methodology and identify tools to find these weaknesses during active operations, when costly lead time and dedicated lab environments are unavailable. This course covers the vulnerability classes that SpecterOps routinely finds on engagements and dives into their root causes, identification techniques, and exploitation methods.

Topics covered include:

• Introduction to Vulnerability Research
• Vulnerability Disclosure
• Target Identification
• Windows Access Control List (ACL) Abuses
• .NET Vulnerabilities
• Driver-Based Vulnerabilities
• Interprocess Communication (IPC)
• File & Protocol Handlers
• File System Bugs
• Path Canonicalization

SpecterOps – Adversary Tactics: Vulnerability Research for Operators