2023 Source Zero Con

LOLBins -The Quieter Way

Wednesday, June 21  |  2:15 p.m. - 3:00 p.m. ET

Using native tools that come pre-installed on an operating system, attackers can remain undetected if defenders are not aware of the possible security threats these tools present. We will examine how attackers can take advantage of this approach and what detection methods defenders can use to detect malicious use of LOLBINs. We’ll also demo some lesser known and recently discovered LOLBINs to illustrate new attack avenues for red teamers and new challenges for blue teamers.

Mattia Campagnano