SlideShare a Scribd company logo

Formula injection/DDE/Macro

I
Ilan Mindel

Ilan`s Syllbus - Infrastracture Module

Internet
1 of 5
Infrastructure Microsoft Office Injection 1
2 Microsoft Office Injection Microsoft Office Microsoft Office is the most popular software on windows machines, it can be found almost on every personal computer, and every organization is using it. The Office software got a feature to run OS commands, this feature can be used by the attacker to run a malicious code on the victim machine using office documents for example word and excel. Office is using a VBScript language code for running the OS commands. VBScript ("Microsoft Visual Basic Scripting Edition") is an Active Scripting language developed by Microsoft that is modeled on Visual Basic. It allows Microsoft Windows system administrators to generate powerful tools for managing computer. VBScript is builtin on all windows systems.
Formula Injection Formula Injection Formula injection known also as CSV injection , it’s a feature that let the attacker to execute a code when the excel file is opened. For Example: Inject to the formula with the following command. =cmd|' /C calc'!A:AA0 This command will run the command calc at the cmd. 3
AUTO DDE AUTO DDE Auto DDE is a legitimate feature give us command execution on MS Office. The Anti-virus doesn’t detect the malicious code is stored on DDE. For Example: Inject to the DDEAUTO with the following command. Pressing Ctrl + F9 Write the following command: { DDEAUTO c:windowssystem32cmd.exe "/k calc.exe“ } This command will run the command calc at the cmd. 4
Macro Macro Macro is a programming language (VB) which embedded inside a software application such as Word, Excel and etc. Macro is a legitimate feature give us the ability to program repeated tasks and save us some work. The Anti-virus doesn’t detect the malicious code is stored on Macro For Example: (VBA Script) Pressing Alt + F11 Write the following command: Sub OpenCMD() Shell "CMD /K C:windowssystem32calc.exe", vbNormalFocus End Sub This command will run the command calc at the cmd. Save the file as doc extension. 5

Recommended

The Ring programming language version 1.3 book - Part 9 of 88
The Ring programming language version 1.3 book - Part 9 of 88The Ring programming language version 1.3 book - Part 9 of 88
The Ring programming language version 1.3 book - Part 9 of 88Mahmoud Samir Fayed
 
Presentation[1]
Presentation[1]Presentation[1]
Presentation[1]Palash Debnath
 
The Ring programming language version 1.5.2 book - Part 16 of 181
The Ring programming language version 1.5.2 book - Part 16 of 181The Ring programming language version 1.5.2 book - Part 16 of 181
The Ring programming language version 1.5.2 book - Part 16 of 181Mahmoud Samir Fayed
 
Introduction for Windows phone 8.1 .
Introduction for Windows phone 8.1 . Introduction for Windows phone 8.1 .
Introduction for Windows phone 8.1 . Youssef Elsalhawy
 
Visual studio
Visual studioVisual studio
Visual studioAvinashChunduri2
 
Windows Universal Apps
Windows Universal AppsWindows Universal Apps
Windows Universal AppsAntonio Pelleriti
 
The Ring programming language version 1.5.1 book - Part 15 of 180
The Ring programming language version 1.5.1 book - Part 15 of 180The Ring programming language version 1.5.1 book - Part 15 of 180
The Ring programming language version 1.5.1 book - Part 15 of 180Mahmoud Samir Fayed
 
Windows phone 8 session 1
Windows phone 8 session 1Windows phone 8 session 1
Windows phone 8 session 1hitesh chothani
 

Recommended

The Ring programming language version 1.3 book - Part 9 of 88
The Ring programming language version 1.3 book - Part 9 of 88The Ring programming language version 1.3 book - Part 9 of 88
The Ring programming language version 1.3 book - Part 9 of 88Mahmoud Samir Fayed
 
Presentation[1]
Presentation[1]Presentation[1]
Presentation[1]Palash Debnath
 
The Ring programming language version 1.5.2 book - Part 16 of 181
The Ring programming language version 1.5.2 book - Part 16 of 181The Ring programming language version 1.5.2 book - Part 16 of 181
The Ring programming language version 1.5.2 book - Part 16 of 181Mahmoud Samir Fayed
 
Introduction for Windows phone 8.1 .
Introduction for Windows phone 8.1 . Introduction for Windows phone 8.1 .
Introduction for Windows phone 8.1 . Youssef Elsalhawy
 
Visual studio
Visual studioVisual studio
Visual studioAvinashChunduri2
 
Windows Universal Apps
Windows Universal AppsWindows Universal Apps
Windows Universal AppsAntonio Pelleriti
 
The Ring programming language version 1.5.1 book - Part 15 of 180
The Ring programming language version 1.5.1 book - Part 15 of 180The Ring programming language version 1.5.1 book - Part 15 of 180
The Ring programming language version 1.5.1 book - Part 15 of 180Mahmoud Samir Fayed
 
Windows phone 8 session 1
Windows phone 8 session 1Windows phone 8 session 1
Windows phone 8 session 1hitesh chothani
 
Unit -II Introduction to visual programming.pdf
Unit -II Introduction to visual programming.pdfUnit -II Introduction to visual programming.pdf
Unit -II Introduction to visual programming.pdfUjwala Junghare
 
introduction to visual basic PPT.pptx
introduction to visual basic PPT.pptxintroduction to visual basic PPT.pptx
introduction to visual basic PPT.pptxclassall
 
The Notes on Microsoft Visual Basic 6.0
The Notes on Microsoft Visual Basic 6.0The Notes on Microsoft Visual Basic 6.0
The Notes on Microsoft Visual Basic 6.0ANIKDUTTA25
 
Visual Studio
Visual StudioVisual Studio
Visual Studiouniversity of education,Lahore
 
Visual Studio
Visual StudioVisual Studio
Visual Studiouniversity of education,Lahore
 
Mca 504 dotnet_unit1
Mca 504 dotnet_unit1Mca 504 dotnet_unit1
Mca 504 dotnet_unit1Rai Saheb Bhanwar Singh College Nasrullaganj
 
Programming basics
Programming basicsProgramming basics
Programming basicsSenri DLN
 
How to Develop Cross Platform Application in Visual Studio Code?
How to Develop Cross Platform Application in Visual Studio Code?How to Develop Cross Platform Application in Visual Studio Code?
How to Develop Cross Platform Application in Visual Studio Code?Flutter Agency
 
Membangun Desktop App
Membangun Desktop AppMembangun Desktop App
Membangun Desktop AppFajar Baskoro
 
Wsus sample scripts
Wsus sample scriptsWsus sample scripts
Wsus sample scriptsConcentrated Technology
 
Bt0082 visual basic
Bt0082 visual basicBt0082 visual basic
Bt0082 visual basicTechglyphs
 
Crisis. advanced malware
Crisis. advanced malwareCrisis. advanced malware
Crisis. advanced malwareYury Chemerkin
 
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptx
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptxhjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptx
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptxEliasPetros
 
Computer Software and Application Software
Computer Software and Application Software Computer Software and Application Software
Computer Software and Application Software Bonie Patosa Jr.
 
Introduction to Programming Lesson 01
Introduction to Programming Lesson 01Introduction to Programming Lesson 01
Introduction to Programming Lesson 01A-Tech and Software Development
 
Microsoft.net architecturte
Microsoft.net architecturteMicrosoft.net architecturte
Microsoft.net architecturteIblesoft
 
01 Introduction to programming
01 Introduction to programming01 Introduction to programming
01 Introduction to programmingmaznabili
 
.Net framework
.Net framework.Net framework
.Net frameworkRaghu nath
 
Selje_Amazing VFP2C32 Library.pdf
Selje_Amazing VFP2C32 Library.pdfSelje_Amazing VFP2C32 Library.pdf
Selje_Amazing VFP2C32 Library.pdfEric Selje
 
Windows 8 App Development
Windows 8 App DevelopmentWindows 8 App Development
Windows 8 App DevelopmentGoogle Developer Group - Galgotias University
 
Xxe
XxeXxe
XxeIlan Mindel
 
Xss
XssXss
XssIlan Mindel
 

More Related Content

Similar to Formula injection/DDE/Macro

Unit -II Introduction to visual programming.pdf
Unit -II Introduction to visual programming.pdfUnit -II Introduction to visual programming.pdf
Unit -II Introduction to visual programming.pdfUjwala Junghare
 
introduction to visual basic PPT.pptx
introduction to visual basic PPT.pptxintroduction to visual basic PPT.pptx
introduction to visual basic PPT.pptxclassall
 
The Notes on Microsoft Visual Basic 6.0
The Notes on Microsoft Visual Basic 6.0The Notes on Microsoft Visual Basic 6.0
The Notes on Microsoft Visual Basic 6.0ANIKDUTTA25
 
Programming basics
Programming basicsProgramming basics
Programming basicsSenri DLN
 
How to Develop Cross Platform Application in Visual Studio Code?
How to Develop Cross Platform Application in Visual Studio Code?How to Develop Cross Platform Application in Visual Studio Code?
How to Develop Cross Platform Application in Visual Studio Code?Flutter Agency
 
Membangun Desktop App
Membangun Desktop AppMembangun Desktop App
Membangun Desktop AppFajar Baskoro
 
Bt0082 visual basic
Bt0082 visual basicBt0082 visual basic
Bt0082 visual basicTechglyphs
 
Crisis. advanced malware
Crisis. advanced malwareCrisis. advanced malware
Crisis. advanced malwareYury Chemerkin
 
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptx
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptxhjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptx
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptxEliasPetros
 
Computer Software and Application Software
Computer Software and Application Software Computer Software and Application Software
Computer Software and Application Software Bonie Patosa Jr.
 
Microsoft.net architecturte
Microsoft.net architecturteMicrosoft.net architecturte
Microsoft.net architecturteIblesoft
 
01 Introduction to programming
01 Introduction to programming01 Introduction to programming
01 Introduction to programmingmaznabili
 
.Net framework
.Net framework.Net framework
.Net frameworkRaghu nath
 
Selje_Amazing VFP2C32 Library.pdf
Selje_Amazing VFP2C32 Library.pdfSelje_Amazing VFP2C32 Library.pdf
Selje_Amazing VFP2C32 Library.pdfEric Selje
 

Similar to Formula injection/DDE/Macro (20)

Unit -II Introduction to visual programming.pdf
Unit -II Introduction to visual programming.pdfUnit -II Introduction to visual programming.pdf
Unit -II Introduction to visual programming.pdf
 
introduction to visual basic PPT.pptx
introduction to visual basic PPT.pptxintroduction to visual basic PPT.pptx
introduction to visual basic PPT.pptx
 
The Notes on Microsoft Visual Basic 6.0
The Notes on Microsoft Visual Basic 6.0The Notes on Microsoft Visual Basic 6.0
The Notes on Microsoft Visual Basic 6.0
 
Visual Studio
Visual StudioVisual Studio
Visual Studio
 
Visual Studio
Visual StudioVisual Studio
Visual Studio
 
Mca 504 dotnet_unit1
Mca 504 dotnet_unit1Mca 504 dotnet_unit1
Mca 504 dotnet_unit1
 
Programming basics
Programming basicsProgramming basics
Programming basics
 
How to Develop Cross Platform Application in Visual Studio Code?
How to Develop Cross Platform Application in Visual Studio Code?How to Develop Cross Platform Application in Visual Studio Code?
How to Develop Cross Platform Application in Visual Studio Code?
 
Membangun Desktop App
Membangun Desktop AppMembangun Desktop App
Membangun Desktop App
 
Wsus sample scripts
Wsus sample scriptsWsus sample scripts
Wsus sample scripts
 
Bt0082 visual basic
Bt0082 visual basicBt0082 visual basic
Bt0082 visual basic
 
Crisis. advanced malware
Crisis. advanced malwareCrisis. advanced malware
Crisis. advanced malware
 
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptx
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptxhjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptx
hjksjdhksjhcksjhckjhskdjhcskjhckjdppt.pptx
 
Computer Software and Application Software
Computer Software and Application Software Computer Software and Application Software
Computer Software and Application Software
 
Introduction to Programming Lesson 01
Introduction to Programming Lesson 01Introduction to Programming Lesson 01
Introduction to Programming Lesson 01
 
Microsoft.net architecturte
Microsoft.net architecturteMicrosoft.net architecturte
Microsoft.net architecturte
 
01 Introduction to programming
01 Introduction to programming01 Introduction to programming
01 Introduction to programming
 
.Net framework
.Net framework.Net framework
.Net framework
 
Selje_Amazing VFP2C32 Library.pdf
Selje_Amazing VFP2C32 Library.pdfSelje_Amazing VFP2C32 Library.pdf
Selje_Amazing VFP2C32 Library.pdf
 
Windows 8 App Development
Windows 8 App DevelopmentWindows 8 App Development
Windows 8 App Development
 

More from Ilan Mindel

Creds extraction
Creds extractionCreds extraction
Creds extractionIlan Mindel
 
Ports and services
Ports and servicesPorts and services
Ports and servicesIlan Mindel
 
Password cracking
Password crackingPassword cracking
Password crackingIlan Mindel
 

More from Ilan Mindel (12)

Xxe
XxeXxe
Xxe
 
Xss
XssXss
Xss
 
Ssrf
SsrfSsrf
Ssrf
 
Sql injection
Sql injectionSql injection
Sql injection
 
Lfi rfi
Lfi rfiLfi rfi
Lfi rfi
 
Creds extraction
Creds extractionCreds extraction
Creds extraction
 
Tunneling
TunnelingTunneling
Tunneling
 
Reverse shell
Reverse shellReverse shell
Reverse shell
 
Responder
ResponderResponder
Responder
 
Ports and services
Ports and servicesPorts and services
Ports and services
 
Password cracking
Password crackingPassword cracking
Password cracking
 
Responder PPT
Responder PPTResponder PPT
Responder PPT
 

Recently uploaded

On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024APNIC
 
AWS Community DAY Albertini-Ellan Cloud Security (1).pptx
AWS Community DAY Albertini-Ellan Cloud Security (1).pptxAWS Community DAY Albertini-Ellan Cloud Security (1).pptx
AWS Community DAY Albertini-Ellan Cloud Security (1).pptxellan12
 
WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)
WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)
WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)Delhi Call girls
 
Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝soniya singh
 
Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...
Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...
Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...tanu pandey
 
Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.soniya singh
 
VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...
VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...
VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...singhpriety023
 
All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445
All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445
All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445ruhi
 
Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.soniya singh
 
INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.
INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.
INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.CarlotaBedoya1
 
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝soniya singh
 
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort ServiceEnjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort ServiceDelhi Call girls
 
CALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service Online
CALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service OnlineCALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service Online
CALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service Onlineanilsa9823
 
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Callshivangimorya083
 
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024APNIC
 
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebGDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebJames Anderson
 
Hot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night Stand
Hot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night StandHot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night Stand
Hot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night Standkumarajju5765
 
Moving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providersMoving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providersDamian Radcliffe
 

Recently uploaded (20)

On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024
 
AWS Community DAY Albertini-Ellan Cloud Security (1).pptx
AWS Community DAY Albertini-Ellan Cloud Security (1).pptxAWS Community DAY Albertini-Ellan Cloud Security (1).pptx
AWS Community DAY Albertini-Ellan Cloud Security (1).pptx
 
WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)
WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)
WhatsApp 📞 8448380779 ✅Call Girls In Mamura Sector 66 ( Noida)
 
Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Pratap Nagar Delhi 💯Call Us 🔝8264348440🔝
 
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
 
Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...
Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...
Pune Airport ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready...
 
Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Shahpur Jat Escort Service Delhi N.C.R.
 
VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...
VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...
VIP Model Call Girls Hadapsar ( Pune ) Call ON 9905417584 Starting High Prof...
 
All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445
All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445
All Time Service Available Call Girls Mg Road 👌 ⏭️ 6378878445
 
Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Green Park Escort Service Delhi N.C.R.
 
INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.
INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.
INDIVIDUAL ASSIGNMENT #3 CBG, PRESENTATION.
 
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
 
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort ServiceEnjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
 
CALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service Online
CALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service OnlineCALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service Online
CALL ON ➥8923113531 🔝Call Girls Lucknow Lucknow best sexual service Online
 
Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...
Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...
Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...
 
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
 
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
 
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebGDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
 
Hot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night Stand
Hot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night StandHot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night Stand
Hot Call Girls |Delhi |Hauz Khas ☎ 9711199171 Book Your One night Stand
 
Moving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providersMoving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providers
 

Formula injection/DDE/Macro

  • 2. 2 Microsoft Office Injection Microsoft Office Microsoft Office is the most popular software on windows machines, it can be found almost on every personal computer, and every organization is using it. The Office software got a feature to run OS commands, this feature can be used by the attacker to run a malicious code on the victim machine using office documents for example word and excel. Office is using a VBScript language code for running the OS commands. VBScript ("Microsoft Visual Basic Scripting Edition") is an Active Scripting language developed by Microsoft that is modeled on Visual Basic. It allows Microsoft Windows system administrators to generate powerful tools for managing computer. VBScript is builtin on all windows systems.
  • 3. Formula Injection Formula Injection Formula injection known also as CSV injection , it’s a feature that let the attacker to execute a code when the excel file is opened. For Example: Inject to the formula with the following command. =cmd|' /C calc'!A:AA0 This command will run the command calc at the cmd. 3
  • 4. AUTO DDE AUTO DDE Auto DDE is a legitimate feature give us command execution on MS Office. The Anti-virus doesn’t detect the malicious code is stored on DDE. For Example: Inject to the DDEAUTO with the following command. Pressing Ctrl + F9 Write the following command: { DDEAUTO c:windowssystem32cmd.exe "/k calc.exe“ } This command will run the command calc at the cmd. 4
  • 5. Macro Macro Macro is a programming language (VB) which embedded inside a software application such as Word, Excel and etc. Macro is a legitimate feature give us the ability to program repeated tasks and save us some work. The Anti-virus doesn’t detect the malicious code is stored on Macro For Example: (VBA Script) Pressing Alt + F11 Write the following command: Sub OpenCMD() Shell "CMD /K C:windowssystem32calc.exe", vbNormalFocus End Sub This command will run the command calc at the cmd. Save the file as doc extension. 5