Russian attack: Live demos of their steps, tools, techniques presented at troopers 2016

by Wayne Huang, Sun Huang,

Summary : We live-demo (as an attacker) many Russian crimeware that's never been disclosed before, including tools and techniques to: compromise legit sites, inject backdoor, inject malicious code, add botnet feature to existing malware, operate botnet, check antivirus detection rates, and circumvent security scanning. We then cover very effective means to defend against every stage of their kill chain.
Due to the amount of content to cover and the limited time, we won’t be covering the basics like what’s an exploit, what are exploit kits, what are TDSs, etc. At the same time because it’s about understanding their tools, we’ll be tracing through some source code (of their tools).