Description: In this video he shows us how to use evilgrade and hack a remote system.
Evilgrade is very powerful tool for fake update exploitation. Evilgrade exploit a weaknesses in the auto update services.
http://www.infobytesec.com/developments.html
http://securitytube-tools.net/index.php?title=Evilgrade
Some Text Tutorials :- http://blog.nightlionsecurity.com/guides/2012/04/hacking-autoupdate-by-injecting-fake-updates-with-evilgrade/
http://vishnuvalentino.com/hacking-tutorial/15-step-to-hacking-windows-using-evilgrade-2-0-on-backtrack-5/
http://www.infobytesec.com/down/isr-evilgrade-Readme.txt
Tags: exploit , fake-update , exploit ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
This evilgrade is fantastic tool. But you have to choose perfect payload for Any Operating system. If you choose wrong payload that update will crash with some stupid error.
Watch this Defcon Video :-
http://www.securitytube.net/video/3135
Interesting Slide.
https://www.defcon.org/images/defcon-18/dc-18-presentations/Amato-Kirschabum/DEFCON-18-Amato-Kirschabum-Evilgrade.pdf
this tool take advantage of weaknesses in the auto-update services of software packages. nice video.