• XSS.stack #1 – первый литературный журнал от юзеров форума

lnk warning sreen

Отслеживать
v1ct0ry сказал(а):
lnk is popularly used for spreading and its being well known to security.
use a newer spreading alternative method
So if .lnk is also dead, what remains? Office macros were good back in the day until Microsoft pulled the plug on them, .lnk and .iso + .lnk were crazy strong in 2022 and 2023 but looks like they are also dead now. The only other method which comes to mind that can be used for phishing/disguising is an .exe signed with an EV certificate. But those are pricey and go bad quick.
 
there are methods, not just cheap for everyone.
iHack сказал(а):
So if .lnk is also dead, what remains? Office macros were good back in the day until Microsoft pulled the plug on them, .lnk and .iso + .lnk were crazy strong in 2022 and 2023 but looks like they are also dead now. The only other method which comes to mind that can be used for phishing/disguising is an .exe signed with an EV certificate. But those are pricey and go bad quick.
 
iHack сказал(а):
So if .lnk is also dead, what remains? Office macros were good back in the day until Microsoft pulled the plug on them, .lnk and .iso + .lnk were crazy strong in 2022 and 2023 but looks like they are also dead now. The only other method which comes to mind that can be used for phishing/disguising is an .exe signed with an EV certificate. But those are pricey and go bad quick.
even .iso files got this dumbass warning now smh
 
Пожалуйста, обратите внимание, что пользователь заблокирован
iHack сказал(а):
So if .lnk is also dead, what remains? Office macros were good back in the day until Microsoft pulled the plug on them, .lnk and .iso + .lnk were crazy strong in 2022 and 2023 but looks like they are also dead now. The only other method which comes to mind that can be used for phishing/disguising is an .exe signed with an EV certificate. But those are pricey and go bad quick.
you can use .reg file with startup key maybe but is need wait victim restart the pc
 
Q84 сказал(а):
was it? i supposed to experiment with it back in 2019

Stuxnet used .lnk, its ancient technique and known forever by vendors and its a core component of windows that is impossible to block if you know how it rly work. This person most likely bought an lnk builder from someone who not knows how lnk file format works and got scammed.

seal сказал(а):
how can i bypass this warning screen
ce99055338080473ca9a57160ca0ee98.png


can I see the contents of this .lnk file command line arguments? (target should start with C:\Windows\ and call entrypoint of MS component) I tried rn on a fresh wserv 2025 RDP it has no warnings and its more locked down than any other MS OS and I launched calc and cobalt beacon w/ several MS components. no warning. LNK is not good for spamming google/bing ads bc its literally unecessary, if thats what u wnna do, U need EV cert and thousands of aged domains and slave to grind overdrafts for getting u millions of adspends. lnk is best for targeted spearphish. I can make vid of pop calc if u want
 
admin


Напишите ответ...
  • Вставить:
Прикрепить файлы
Верх