Using URI to pop shells via Discord Client

Introduction  Myself and a group of researchers: Styx, CyberSecStu, and 5w0rdFish from The Many Hats Club discovered a vulnerability within the Discord client that enabled an attacker to call local programs on a target system. We then took this flaw and used it to pivot through MS-Word macros to start a reverse TCP shell automatically…
Read more


14th December 2018 0