Loading video...

Video Failed to Load

Go Home

Dismantling Smart App Control (And SmartScreen) - 4 new initial access techniques with no security warnings or popups - including LNK mark-of-the-web bypass with over 5 years of ITW use Article: POC: #rephijack #lnkstomping

dez_'s profile picture

Joe Desimone

5,662 subscribers

21,052 views • 1 year ago •via X (Twitter)

Science & Technology#rephijack#lnkstomping
LIVE

Anya Rossi• Live Now

Private livecam show

3 Comments

HotCakeX ✡︎ סגול's profile picture
HotCakeX ✡︎ סגול1 year ago

Few notes for readers 1) SAC is for home users, App control for Business is the enterprise ver 2) WDAC cannot be bypassed like this. 3) Using legit certificate to sign malware doesn't end up good for the person acquired the cert. 4) Windows has a lot more than 2 security layers

Squiblydoo's profile picture
Squiblydoo1 year ago

Thanks for calling out code signing certs. :) Would you mind uploading a compiled copy of rep-check? It just makes it a little more accessible.

Joe Desimone's profile picture
Joe Desimone1 year ago

done,

Related Videos

The new sims 4 update includes a bunch of new club activities including "use water vehicles" and I ended up with the most chaotic club gathering ever
0:14

The new sims 4 update includes a bunch of new club activities including "use water vehicles" and I ended up with the most chaotic club gathering ever

OnlyAbiDoang

267,911 views • 1 year ago

Introducing the Lens Developer Dashboard. Build onchain apps faster with social primitives, custom monetization, and access control. No smart contract expertise required and no friction.
0:16

Introducing the Lens Developer Dashboard. Build onchain apps faster with social primitives, custom monetization, and access control. No smart contract expertise required and no friction.

Lens

31,112 views • 1 year ago

As of today, the new Lenovo Chromebook Plus 14 is available and comes with a whole suite of new AI features, including access to NotebookLM directly from the shelf. From web, to mobile, now to direct on desktops— where should we go next? 🗺️
0:17

As of today, the new Lenovo Chromebook Plus 14 is available and comes with a whole suite of new AI features, including access to NotebookLM directly from the shelf. From web, to mobile, now to direct on desktops— where should we go next? 🗺️

NotebookLM

49,758 views • 1 year ago

The all-new App Store on Apple Vision Pro has over 1 million apps, including new experiences that take advantage of the unique capabilities of Vision Pro. There will be plenty of apps to play with on launch - and not just games!
0:12

The all-new App Store on Apple Vision Pro has over 1 million apps, including new experiences that take advantage of the unique capabilities of Vision Pro. There will be plenty of apps to play with on launch - and not just games!

Brandon Butch

203,752 views • 2 years ago

Budget 2025 projects $2.5T in new spending over the next 5 years, or $100K per taxpayer. Today, Mark Carney said the ROI on all this money is $3,000 per Canadian. What kind of retard would hand over $100K for a 3% return over 5 years?
0:14

Budget 2025 projects $2.5T in new spending over the next 5 years, or $100K per taxpayer. Today, Mark Carney said the ROI on all this money is $3,000 per Canadian. What kind of retard would hand over $100K for a 3% return over 5 years?

govt.exe is corrupt

206,706 views • 7 months ago

Transaction → TransferGate → Smart control. Control who, what, and how your assets move onchain with fully programmable security on Incentiv.
0:15

Transaction → TransferGate → Smart control. Control who, what, and how your assets move onchain with fully programmable security on Incentiv.

Incentiv

32,207 views • 6 months ago

The 'Connect Wallet' button is dead. 🪦 Introducing: The Connect Embed Let users sign into your app without leaving the page — with email, Google, Facebook, Apple, 𝕏 and more... ✅ Fully embedded ⚡️ Ultra-fast 📱 Web and mobile ❌ No popups ❌ No creating a wallet
0:15

The 'Connect Wallet' button is dead. 🪦 Introducing: The Connect Embed Let users sign into your app without leaving the page — with email, Google, Facebook, Apple, 𝕏 and more... ✅ Fully embedded ⚡️ Ultra-fast 📱 Web and mobile ❌ No popups ❌ No creating a wallet

thirdweb

29,389 views • 2 years ago

New app is live! 🎉 Will attempt to grow this app to 5K downloads by the end of January :) Perfect timing to use it with my family & friends for Xmas and New Years Eve to record cute small Snappits 🎬
0:15

New app is live! 🎉 Will attempt to grow this app to 5K downloads by the end of January :) Perfect timing to use it with my family & friends for Xmas and New Years Eve to record cute small Snappits 🎬

Vivien Mahé

21,312 views • 6 months ago

Deployment of new poc Galaxy 37/Horizons 4 confirmed
0:17

Deployment of new poc Galaxy 37/Horizons 4 confirmed

SpaceX

1,220,549 views • 2 years ago

Got rejected for a loan or credit card? Take control of your credit with Self. Download the app today!
0:14

Got rejected for a loan or credit card? Take control of your credit with Self. Download the app today!

Self Financial Inc

296,667,896 views • 3 years ago

A new chapter of VeVe begins. For years, VeVe has partnered with some of the world's most iconic brands and creators including Disney, Marvel, Star Wars, and DC. Now, we're bringing that universe to Telegram, starting this Saturday. Get first access:
0:15

A new chapter of VeVe begins. For years, VeVe has partnered with some of the world's most iconic brands and creators including Disney, Marvel, Star Wars, and DC. Now, we're bringing that universe to Telegram, starting this Saturday. Get first access:

VeVe Stickerverse

41,639 views • 18 days ago

4 years of the film with no haters! 💥💥💥
0:10

4 years of the film with no haters! 💥💥💥

Nishit Shaw

11,568 views • 19 days ago

In the initial days of my trading, I had no clue about order flow. 4 years later, order flow is a critical final part of my trading. I've built a list of the top 3 ways I use order flow in a systematic way. Today, I am sharing it with you 🧵
0:13

In the initial days of my trading, I had no clue about order flow. 4 years later, order flow is a critical final part of my trading. I've built a list of the top 3 ways I use order flow in a systematic way. Today, I am sharing it with you 🧵

Goshawk Trades

76,593 views • 2 years ago

Make Miro part of your Google Docs, with smart chips! Use smart chips to create shortcuts to Miro in your docs, view details, request access and save time when working across Miro and Google Workspace.
0:17

Make Miro part of your Google Docs, with smart chips! Use smart chips to create shortcuts to Miro in your docs, view details, request access and save time when working across Miro and Google Workspace.

Miro

13,967 views • 3 years ago

Elevate your token swaps with the speed and security of Uniswap Labs 🦄 on Ledger Live. Enjoy seamless trading with full transparency—no more uncertainty, no more blind signing. Keep your assets secure and under your control, every step of the way.
0:15

Elevate your token swaps with the speed and security of Uniswap Labs 🦄 on Ledger Live. Enjoy seamless trading with full transparency—no more uncertainty, no more blind signing. Keep your assets secure and under your control, every step of the way.

Ledger

45,241 views • 1 year ago

Connecting to Binance Wallet (Web) is effortless. Just scan the QR code with your Binance app, confirm, and access your wallet in seconds!
0:15

Connecting to Binance Wallet (Web) is effortless. Just scan the QR code with your Binance app, confirm, and access your wallet in seconds!

Binance

109,781 views • 8 months ago

Gym class of the future?! An innovative lifting program was just recently introduced in Danish schools. It provides students grades 5-10 with access to three free 4-6-week training courses designed to teach fundamental lifting techniques!
0:11

Gym class of the future?! An innovative lifting program was just recently introduced in Danish schools. It provides students grades 5-10 with access to three free 4-6-week training courses designed to teach fundamental lifting techniques!

Squat University

39,306 views • 1 year ago

4/ No need to hand over Aadhaar photocopy at hotel receptions, shops or during travel. The Aadhaar App is secure and shareable only with the user's consent. ✅100% digital & secure
0:11

4/ No need to hand over Aadhaar photocopy at hotel receptions, shops or during travel. The Aadhaar App is secure and shareable only with the user's consent. ✅100% digital & secure

Ashwini Vaishnaw

71,362 views • 1 year ago

🔥New Feature Alert!😱 Match someone with one click through Control Roulette!😍Enjoy a quick, easy, and safe real-time toy control session, and no more worries about finding a control link partner.💦 Available on the latest version of Lovense Remote App:
0:14

Sensitive content

🔥New Feature Alert!😱 Match someone with one click through Control Roulette!😍Enjoy a quick, easy, and safe real-time toy control session, and no more worries about finding a control link partner.💦 Available on the latest version of Lovense Remote App:

LovenseOfficial

25,248 views • 2 years ago