This talk will explore a recent discovery of being able to execute shellcode and make Win32 api calls from the Windows Script Host. This will be a deep dive case study of executing shellcode via an HTA file. We will discuss patterns fro execution and detection. There are many other applications that you can be applied using these techniques. This talk will be of interest for Red Team and Blue Team.
Casey Smith has a passion for understanding and testing defensive systems. @subTee