Εκμετάλλευση ελαττωμάτων ασφαλείας με τη μέθοδο "Living off the land and bringing your own land"
Exploiting security flaws with the "Living off the land and bringing your own land" method
Master Thesis
Author
Balasis Dokos, Konstantinos
Μπαλάσης Δόκος, Κωνσταντίνος
Date
2022-09View/ Open
Keywords
Security ; LOLBAS ; LLOLBAS ; GhostPack ; ExploitationAbstract
Cyber attacks over the years have only been increasing in trend. The digital transformation of companies with simultaneous under-training of employees, understaffing of IT departments and budget cuts in security create an explosive environment in the cybersecurity field. In recent years, threats have increased rapidly resulting in businesses, industries to hospitals and water companies either shutting down or being threatened with dire possible consequences. Attackers have leveraged increasingly sophisticated techniques to exploit coding bugs in web applications, and security gaps both in endpoint detection and response (EDR) systems, endpoint protection platforms (EPPs), and antivirus software. It is, unfortunately, the new dangerous reality and we as a whole must be constantly vigilant, each in our own role and position with a common goal and purpose, the safe and uninterrupted use and operation of systems either in our area of responsibility or in the wider IT research area.
Given the market share of the OS and the widespread use of the OS we understand how important the conclusions we draw and their application in a real world environment.