Windows Persistence P2 | Backdoors

Introduction

In this post, we covered the second part of Windows Persistence Techniques and specifically we covered Backdooring files as part of TryHackMe Windows Local Persistence

Another method of establishing persistence consists of tampering with some files we know the user interacts with regularly. By performing some modifications to such files, we can plant backdoors that will get executed whenever the user accesses them. Since we don’t want to create any alerts that could blow our cover, the files we alter must keep working for the user as expected.

While there are many opportunities to plant backdoors, we will check the most commonly used ones.

Executable Files
Shortcut Files
Hijacking File Associations
Startup Scripts

Get OSCP Certificate Notes

Room Answers

Insert flag5 here

Insert flag6 here

Video Walkthrough

Get Cyber Security Field Notes By Joining My YouTube Channel Membership

CTF Writeup, tryhackme, windows persistence

Show Comments

Motasem

About the Author

I create cybersecurity notes, digital marketing notes and online courses. I also provide digital marketing consulting including but not limited to SEO, Google & Meta ads and CRM administration.

View Articles

Windows Persistence Techniques P2 | Backdoors | TryHackMe Windows Local Persistence

Introduction

Room Answers

Video Walkthrough

Leave a Reply Cancel reply

Motasem

About the Author

Press ESC to close

Windows Persistence Techniques P2 | Backdoors | TryHackMe Windows Local Persistence

Introduction

Room Answers

Video Walkthrough

Leave a Reply Cancel reply

Motasem

About the Author

Share Article:

You might also like

Open Source Intelligence Reddit Case Study | TryHackMe Advent of Cyber

Open Source Intelligence Tools & Techniques Explained With Case Studies

WordPress XXE Vulnerability | CVE-2021-29447 TryHackMe