I published the following diary on isc.sans.edu: “Keep An Eye on LOLBins“:
Don’t misread, I won’t talk about “lolcats” today but “LOLBins” or “Living Off The Land Binaries”. All operating systems provide a rich toolbox to achieve multiple day-to-day tasks like maintenance of the certificates, installation of patches and applications, management of files, and many more. Those tools are installed by default and available to all users without specific access rights (most of the time). Also very important, they are signed by the operating system so they are usually considered safe by default… [Read more]
(Source: https://www.slideshare.net/OddvarHlandMoe/lolbins-nothing-to-lol-about)
The post [SANS ISC] Keep An Eye on LOLBins appeared first on /dev/random.
Article Link: https://blog.rootshell.be/2020/08/25/sans-isc-keep-an-eye-on-lolbins/