6 Views· 10 August 2022
let’s play with a ZERO-DAY vulnerability “follina”
Want to become a HACKER? ITProTV has you covered: https://ntck.co/itprotv (30% off FOREVER) *affiliate link
In this video NetworkChuck teamed up with @John Hammond to talk about the NEW and SCARY Microsoft Vulnerability. NetworkChuck and John Hammond are going to teach you about a new dangerous Windows Zero-day vulnerability called “follina” and they are even going to show you how to test it out in your own Zero-day lab using VirtualBox!! Dubbed CVE-2022-30190, this vulnerability takes advantage of the Microsoft Support Diagnostic Tool (msdt) in Microsoft Office. So far, we have seen it the exploit successfully occur with Microsoft Word utilized .doc and .rtf variants. This is a high severity exploit given the remote code execution.
John Hammond's YouTube Video: https://youtu.be/dGCOhORNKRk
🧪🧪Try it yourself!! (Links, docs, and walkthrough): https://ntck.co/follinalinks
SPECIAL THANKS to John Hammond (go check him out!!)
---------------------------------------------------
-YouTube: https://www.youtube.com/c/JohnHammond010
-Twitter: https://twitter.com/_JohnHammond
-his amazing article on Follina: https://www.huntress.com/blog/....microsoft-office-rem
🔥🔥Join the NetworkChuck Academy!: https://ntck.co/NCAcademy
**Sponsored by ITProTV
SUPPORT NETWORKCHUCK
---------------------------------------------------
➡️NetworkChuck membership: https://ntck.co/Premium
☕☕ COFFEE and MERCH: https://ntck.co/coffee
Check out my new channel: https://ntck.co/ncclips
🆘🆘NEED HELP?? Join the Discord Server: https://discord.gg/networkchuck
STUDY WITH ME on Twitch: https://bit.ly/nc_twitch
READY TO LEARN??
---------------------------------------------------
-Learn Python: https://bit.ly/3rzZjzz
-Get your CCNA: https://bit.ly/nc-ccna
FOLLOW ME EVERYWHERE
---------------------------------------------------
Instagram: https://www.instagram.com/networkchuck/
Twitter: https://twitter.com/networkchuck
Facebook: https://www.facebook.com/NetworkChuck/
Join the Discord server: http://bit.ly/nc-discord
0:00 ⏩ Intro
1:58 ⏩ How does CVE-2022-30190 work??
6:33 ⏩ What happens when you open the file?
9:23 ⏩ Let’s set up our zero-day vulnerability lab!
17:29 ⏩Time to test the Malware!
20:00 ⏩ Outro
AFFILIATES & REFERRALS
---------------------------------------------------
(GEAR I USE...STUFF I RECOMMEND)
My network gear: https://geni.us/L6wyIUj
Amazon Affiliate Store: https://www.amazon.com/shop/networkchuck
Buy a Raspberry Pi: https://geni.us/aBeqAL
#follina #cve202230190 #microsoft
0 Comments