itman 1,807 Posted September 20, 2017 Posted September 20, 2017 (edited) Kudos to Eset for being only one of three AV vendors certified. Ref.:https://www.mrg-effitas.com/wp-content/uploads/2017/09/MRG-Effitas-Online-Banking-Certification-2017Q2_wm.pdf Most impressive was Eset's detection of DoublePulsar based 'PeddleCheap' keylogger and preventing the PowerShell Interceptor simulated attack: Quote This script demonstrates the ability to capture and tamper with Web sessions. For secure sessions, this is done by dynamically writing certificates to match the requested domain. This is only proof-of-concept, and should be used cautiously, to demonstrate the effects of such an attack. This script requires local administrative privileges to execute properly https://github.com/subTee/Interceptor/blob/master/InterceptorNG.ps1 Edited September 20, 2017 by itman
Recommended Posts