SO-CON 2020
Contact Us

Daniel Heinsen

Successfully performing a phishing campaign using office document macros is becoming increasingly difficult. Anti-virus vendors are getting better at detecting malicious VBA and users are being trained not to enable them. However, there are many old and forgotten technologies still present in Microsoft Office that may serve as a sufficient replacement for macros. In this talk , we will go over office document internals and explore some of these lesser-known technologies in the Office suite that will assist you in finding new, novel ways to produce and detect malicious office documents.