...

let’s play with a ZERO-DAY vulnerability “follina”

lets-play-with-a-zero-day-vulnerability-follina

Want to become a HACKER? ITProTV has you covered: https://ntck.co/itprotv (30% off FOREVER) *affiliate link

In this video NetworkChuck teamed up with @_JohnHammond to talk about the NEW and SCARY Microsoft Vulnerability. NetworkChuck and John Hammond are going to teach you about a new dangerous Windows Zero-day vulnerability called “follina” and they are even going to show you how to test it out in your own Zero-day lab using VirtualBox!! Dubbed CVE-2022-30190, this vulnerability takes advantage of the Microsoft Support Diagnostic Tool (msdt) in Microsoft Office. So far, we have seen it the exploit successfully occur with Microsoft Word utilized .doc and .rtf variants. This is a high severity exploit given the remote code execution.

John Hammond’s YouTube Video: https://youtu.be/dGCOhORNKRk

??Try it yourself!! (Links, docs, and walkthrough): https://ntck.co/3NRer5Z

SPECIAL THANKS to John Hammond (go check him out!!)
—————————————————
-YouTube: https://www.youtube.com/c/JohnHammond010
-Twitter: https://twitter.com/_JohnHammond
-his amazing article on Follina: https://www.huntress.com/blog/microsoft-office-remote-code-execution-follina-msdt-bug

??Join the NetworkChuck Academy!: https://ntck.co/NCAcademy

**Sponsored by ITProTV

SUPPORT NETWORKCHUCK
—————————————————
??NetworkChuck membership: https://ntck.co/Premium
?? COFFEE and MERCH: https://ntck.co/coffee

Check out my new channel: https://ntck.co/ncclips

??NEED HELP?? Join the Discord Server: https://discord.gg/networkchuck

STUDY WITH ME on Twitch: https://bit.ly/nc_twitch

READY TO LEARN??
—————————————————
-Learn Python: https://bit.ly/3rzZjzz
-Get your CCNA: https://bit.ly/nc-ccna

FOLLOW ME EVERYWHERE
—————————————————
Instagram: https://www.instagram.com/networkchuck/
Twitter: https://twitter.com/networkchuck
Facebook: https://www.facebook.com/NetworkChuck/
Join the Discord server: http://bit.ly/nc-discord

0:00 ? Intro
1:58 ? How does CVE-2022-30190 work??
6:33 ? What happens when you open the file?
9:23 ? Let’s set up our zero-day vulnerability lab!
17:29 ?Time to test the Malware!
20:00 ? Outro

AFFILIATES & REFERRALS
—————————————————
(GEAR I USE…STUFF I RECOMMEND)
My network gear: https://geni.us/L6wyIUj
Amazon Affiliate Store: https://www.amazon.com/shop/networkchuck
Buy a Raspberry Pi: https://geni.us/aBeqAL

#follina #cve202230190 #microsoft

Discover more from WIREDGORILLA

Subscribe now to keep reading and get access to the full archive.

Continue reading