Hacking Software Updates With Evilgrade
|
|
|
||||||||||||
Description:
We had covered EvilGrade a while back. In this demo, g0tmi1k shows us a demo of EvilGrade using Notepad Plus. The underlying hack uses an ARP MITM and DNS Poisoning to redirect all software upgrade request checks to the attacker's server. This server serves a metasploit payload to Notepad Plus instead of the actual payload. Once the update gets exectuted a reverse connect shell provides full access to the victim's computer.
For full details on the script used and other information please visit g0tmi1k's blog post. Thanks go out to g0tmi1k for referring this video to us.
For full details on the script used and other information please visit g0tmi1k's blog post. Thanks go out to g0tmi1k for referring this video to us.