Execution with macro_pack

Focused View

Ricardo Reimao

23:37

136 View

Exercise Files

execution-macro-pack.zip

Module 1 - Course Overview (Tool Introduction)

1. Course Overview.mp4

01:34

Module 2 - Masquerading Malicious Payload with macro_pack

1. Understanding Malicious File Masquerading and the macro_pack Tool.mp4

07:30

2. Masquerading a Metasploit Meterpreter Payload into a Microsoft Word Document.mp4

08:27

3. Creating a File Dropper to Distribute Malware via Microsoft Excel Spreadsheets.mp4

04:14

Module 3 - Resources

1. More Information.mp4

01:52

Description

Knowing how to masquerade malicious content into legitimate files is key when performing phishing attacks. In this course, you will explore the macro_pack tool, which allows you to hide malicious payloads into Microsoft Office files.

What You'll Learn?

Masquerading malicious files into legitimate files is crucial for a successful phishing attack. When the malicious payload is hidden into legitimate documents, the victims are more likely to open the file, giving us access to their computer. In this course, Execution with macro_pack, you will see one of the most useful tools for malicious file masquerading, the macro_pack. First, you will learn the basics about malicious file masquerading and an overview of the macro_pack tool. Next, you will explore how to hide a Metasploit Meterpreter payload into a Microsoft Word file. Finally, you will learn how to create a file dropper with the macro_pack, which can be used to distribute malware hosted in remote servers via unsuspicious Microsoft Excel spreadsheets. When you are finished with this course, you will have the skills and knowledge of the macro_pack tool to masquerade malicious payloads into Microsoft Office files and covers three important tactics from the MITRE ATT&CK framework: User Execution - Malicious File (T1204.002), Command and Scripting Interpreter - Visual Basic (T1059.005) and Phishing - Spearphishing Attachment (T1566.001).

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Microsoft Office

Ricardo Reimao

Instructor's Courses

Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 14+ years of IT experience, 10 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.