Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Red Team: Weaponizing Windows Shortcut (lnk) file Hands-on
Rating: 4.2 out of 5(95 ratings)
1,777 students

Red Team: Weaponizing Windows Shortcut (lnk) file Hands-on

Modern techniques to weaponizing windows shortcut (lnk) file for red team/penetration tester/ethical hacker
Created byP Ahmad
Last updated 1/2023
English

What you'll learn

  • Hack Windows 10 (64 bit)
  • Use of Meterpreter Shell
  • Malicious exe to lnk file conversion
  • Evading detection and prevention mechanism

Course content

1 section7 lectures35m total length
  • Lab Environment Setup4:02

    Set up a dual-VM lab with Kali Linux 22.4 and Windows 10 Pro in VMware Workstation, using bridged networking and specific RAM/CPU allocations to demonstrate the environment.

  • Manually Creating Malicious lnk file and reverse shell10:39

    Demonstrate manually creating a malicious lnk shortcut to deliver a reverse shell payload. Explore using Metasploit with Kali, a Python http server, and antivirus bypass considerations.

  • Evading Detection and Protection Mechanism using lnk file6:26

    Explore evading detection using a windows shortcut (lnk) to run a base64 obfuscated reverse shell via PowerShell, with wscript.shell, obfuscation, and environment parameters.

  • Capturing NTLM Details Using lnk file2:55

    Learn how to weaponize a Windows shortcut (.lnk) to capture NTLM authentication details using Responder on Kali, by creating a COM-based shortcut and saving it to a shared drive.

  • Converting Malicious exe to lnk file3:33

    Learn how to convert a malicious exe to a lnk shortcut using a Python script, creating a Windows payload that downloads and executes via a local server, illustrating exploitation.

  • Colleting Artifacts from lnk file3:11

    Identify Windows shortcut (lnk) file artifacts and inspect a malicious link with a command-line utility to view creation, modification, and access times, path, and arguments.

  • How lnk file used by threat actors4:33

Requirements

  • Basic Linux skills recommended
  • Basic PowerShell skills recommended
  • A Windows 10 or 11 computer (virtual machine or physical machine)

Description

Windows shortcut (LNK) files are a type of file that contain a reference to another file or program on a computer. They are commonly used to create shortcuts to frequently used programs or files on the desktop or in the Start menu.

Cyber attackers and advanced persistent threat (APT) groups have been known to abuse LNK files as a means of gaining initial access to a system and spreading ransomware. One common technique is to send a malicious LNK file as an attachment in a phishing email. When the recipient clicks on the LNK file, it can execute a malicious script or program that installs the ransomware on the victim's computer.

Another technique that cyber attackers have been known to use is to place a malicious LNK file on a network share or removable drive and trick the victim into clicking on it. This can allow the ransomware to spread to other computers on the network or to any computer that the removable drive is connected to.

In addition to using LNK files to spread ransomware, cyber attackers may also use them to gain initial access to a system by exploiting vulnerabilities in the way that Windows processes LNK files. For example, they may create a LNK file that contains a malicious payload that is executed when the LNK file is opened, allowing the attacker to gain access to the victim's system.

In this course you will learn how to exploit a Windows 10 64-bit system using the modern techniques of creating windows shortcut (lnk file). You will also learn how to use the meterpreter shell, how to abuse windows shortcut to gain reverse shell and bypassing all the antivirus listed on virus total and much more.

Who this course is for:

  • Beginner Ethical Hackers
  • Red Team
  • Security Researchers
  • Want to learn modern techniques to weaponizing windows shortcut lnk file