From ff3256e623255408068183aa01d5dac1c2b68b4d Mon Sep 17 00:00:00 2001 From: "Mariusz B. / mgeeky" Date: Wed, 13 Jul 2022 23:02:42 +0200 Subject: [PATCH] readme --- red-teaming/Self-Signed Threat/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/red-teaming/Self-Signed Threat/README.md b/red-teaming/Self-Signed Threat/README.md index 90fdfd4..068cabf 100644 --- a/red-teaming/Self-Signed Threat/README.md +++ b/red-teaming/Self-Signed Threat/README.md @@ -1,6 +1,6 @@ ## Code Signing Certificate Cloning Attack -A Powershell script that signs input Executable file with fake Microsoft code-signing certificate to demonstrate risks of Code Signing attacks. +A Powershell script that signs input Executable file with fake Microsoft code-signing certificate to demonstrate risks of cloned-certificate sign attacks. Script was shamelessly borrowed from [Matt Graeber, @mattifestation](https://twitter.com/mattifestation) and his research titled: - [_Code Signing Certificate Cloning Attacks and Defenses_](https://posts.specterops.io/code-signing-certificate-cloning-attacks-and-defenses-6f98657fc6ec)