by The Ethical Hacking Guru | Sep 14, 2019 | Application Whitelist Bypass, Redteam
This is how to bypass application whitelisting with MSBuild. Casey Smith posted a POC in September 2016 for a malicious use for a Microsoft-signed binary named MSBuild.exe and how it could be used to execute shellcode embedded in an .xml file. MSBuild can execute...