In this video I show how to extract a malicious URL from a PDF without opening it, how to spot a weaponized Office document, and a method to quickly de-obfuscate PowerShell. Enjoy!
Links:
- REMnux: [ Ссылка ]
- PDF: [ Ссылка ]#
- Macro-enabled doc: [ Ссылка ]
===
My SANS Courses:
- SEC450 - Blue Team Fundamentals: [ Ссылка ]
- MGT551 - Building and Leading Security Operations Centers: [ Ссылка ]
PDF Guide to Security Operations: [ Ссылка ]
Blueprint Podcast: [ Ссылка ]
Twitter: [ Ссылка ]
![](https://i.ytimg.com/vi/3rh82pG7MME/maxresdefault.jpg)