Jump to content

MRG Effitas Online Banking Certification Q2 2017


Recommended Posts

Posted (edited)

Kudos to Eset for being only one of three AV vendors certified.

Ref.:https://www.mrg-effitas.com/wp-content/uploads/2017/09/MRG-Effitas-Online-Banking-Certification-2017Q2_wm.pdf

Most impressive was Eset's detection of DoublePulsar based 'PeddleCheap' keylogger and preventing the PowerShell Interceptor simulated attack:

Quote

This script demonstrates the ability to capture and tamper with Web sessions.  
For secure sessions, this is done by dynamically writing certificates to match the requested domain. 
This is only proof-of-concept, and should be used cautiously, to demonstrate the effects of such an attack. 
This script requires local administrative privileges to execute properly

https://github.com/subTee/Interceptor/blob/master/InterceptorNG.ps1

Edited by itman
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...