Adam Chemironadamchemiron.hashnode.dev·Jan 30, 2023MSDT Follina Vulnerability Exploitation and DetectionIntroduction As an Incident Responder, dealing with a zero-day exploit in your IT environment is one of those things you would not wish on your worst enemy. First disclosed in May 2021, the Follina exploit is a remote code execution (RCE) vulnerabili...Discuss·71 readsincident response
Cyrill GremaudforDina - Technical Security Blogsecurity.dina.ch·Jun 27, 2022Follina - Deep Dive AnalysisLa faille de sécurité nommée Follina est exploitée au travers de documents Word malveillants qui utilisent un appel "ms-msdt://" pour exécuter un code malicieux (souvent du PowerShell) sur les machines, et ceci sans à devoir utiliser des macros. Poin...Discuss·116 readsVulnerabilityFollina
