Deadwood 2020 (Virtual Con)
Back To Schedule
Thursday, September 24 • 3:00pm - 3:50pm
Bypassing Antivirus: With Understanding Comes Ease

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

The job of a penetration tester is to emulate real-world, realistic adversaries to compromise the client, and explain the business risks of the technical findings. Those pesky real-world adversaries bypass AV all the time, even with essentially the same malware, over and over.

How do they do it? Simple. By understanding what traps AV is setting, you can step around, jump over, or disable those traps before sauntering to your destination unhindered. I can't help with your saunter, but I can help you understand and bypass AV using arbitrary payloads (whether Cobalt Strike, Metasploit, Covenant, Mystic, SILENTTRINITY, or whichever) in many ways, all in less than an hour.

avatar for Jeff McJunkin

Jeff McJunkin

Jeff McJunkin is the founder of Rogue Valley Information Security, a consulting firm specializing in penetration testing and red team engagements. Jeff has a long background in systems and network administration that he leveraged into web and network penetration testing, especially... Read More →

Thursday September 24, 2020 3:00pm - 3:50pm MDT
Track 1