Client-side Payload – The Brazilian Way

By | September 19, 2012
Source: Tustwave SpiderLabs
by Wendel Guglielmetti Henrique

In this article “My name is Wendel Guglielmetti Henrique, and I’m a senior security consultant at Trustwave’s SpiderLabs. I have over 12 years experience in Information Technology, with the last 7 years dedicated to penetration testing.

My recent presentations include RSA Conference 2012 (USA), ToorCon 13 (USA), Defcon 19 (USA), Black Hat Arsenal 2010 (USA), OWASP AppSec Research 2010 (Sweden), Black Hat Europe 2010 (Spain), as well as other large conferences around the world. I also co-authored a patent-pending penetration testing technology.

This is my first post at SpiderLabs blog; to be honest, it’s the first time I’ve ever posted on a blog.

In this post, I’ll be discussing my personal experience with client-side attacks, phishing attacks, and social engineering, focusing mostly on the payloads. This will be a short brief about the most relevant points, which has allowed me to build a first-class payload resulting in a 100% success rate during engagements.

I will also be including a few suggestions for penetration testers who need to drop executable files on disk. One of the things I hear quite often is people asking for help because they are being caught by anti-virus or endpoint security software.

The name of the blog post is a tribute for all my co-workers at Trustwave that are Brazilians as well; we are a small team in Brazil but work very hard.”

Leave a Reply