let’s play with a ZERO-DAY vulnerability “follina”

Want to become a HACKER? ITProTV has you covered: ntck.co/itprotv (30% off FOREVER) *affiliate link
🧪🧪Try it yourself!! (Links, docs, and walkthrough): ntck.co/follinalinks
SPECIAL THANKS to John Hammond (go check him out!!)
---------------------------------------------------
-UA-cam: ua-cam.com/users/JohnHammond010
-Twitter: twitter.com/_JohnHammond
-his amazing article on Follina: www.huntress.com/blog/microsoft-office-remote-code-execution-follina-msdt-bug
🔥🔥Join the NetworkChuck Academy!: ntck.co/NCAcademy
**Sponsored by ITProTV
0:00 ⏩ Intro
1:58 ⏩ How does CVE-2022-30190 work??
6:33 ⏩ What happens when you open the file?
9:23 ⏩ Let’s set up our zero-day vulnerability lab!
17:29 ⏩Time to test the Malware!
20:00 ⏩ Outro

Thanks for keeping the “mistakes” in the video. It reinforces the information sooo much better !

HUGE thanks for letting me come crash the party, NetworkChuck!! Looking forward to all the crazy cool stuff we can do in the future 😎

It was amazing seeing Chuck test a real vunerability, this could be a very interesting series on your channel!

Thank you Network Chuck for making this video so quickly and of course thanks to John Hammond. I followed along and indeed was fun to play around with.

Zero-day vulnerability is scary and should be consider to learn with caution. Thank you for the information and keep it up!

Amazing collab! Been following both of you for a while, awesome to see!

As an ethical hacker in making, I really appreciated this video, very informative as always, thanks, Chuck!

Thank you for this video, relateable content as im in the cyber security field. Would definatly be intersted in more content like this.

Very interesting video. I've been playing with python for the last 5 or 6 months, but never knew you could make a webserver like that. Great content!!!

As a middle aged bearded geek going through A+ cert after years of computer nerdery, your videos always ring true to what I seem to be learning at any moment be it bash, be it ip sucking at subnetting or zero day exploits…Chuck you are tuned in to what so many delicious topics! Thanks for being our coffee! ☕️

Thank you so much for this I have been waiting someone to do videos like this!

Definitely would like to see more of these type of videos. As a user of the 365 support and recovery tool for troubleshooting tenant issues I’m wondering how vulnerable the program is to being exploited, especially not knowing how superficial endpoint scanning is…

Really great video. I loved how you showed troubleshooting and set up that Python web server to share that file. Great content as always.

Everytime I watch one of your videos about Linux I learn something new and want to learn more. Great video.

Excellent !! Thanks for this detailed explanation and demo

Love John Hammonds content and yourself and would love to see more collabs

its really awesome that this video references what you learn in the Hack the box course.

definetely do more of this.
great video

@NetWorkChuck
Yes, you should keep doing vids like this. The good thing to this would be your growing along the way AND bringing others with you as they learn these things too!

Defo a cool video, great to see first hand in a really easy flowing way how to create a lab like this.

Love watching these thanks Chuck and John for sharing! Legends!

Networkchuck & John Hammond content love to see that! Thank you chuck for the great content

Thanks for you work
I love it. Tested it out and got it working.
I wonder if the company I work for would have to worry about this. Sure they have it blocked already but you never know. Company is world wide

Amazing video Chuck. More content like this please dude

Super Video Chuck Your videos are awesome And informative

this is such a great video! thank you for your work!

You should really do a playlist explaining these vulnerabilities.
Yes, there are channels explaining this stuff, but with you and your way of teaching things, explaining a CVE and how it works is a must for security professionals, especially if they want to be blue or red team pros, or even us, who are just passionate of these things.
Do a playlist!!!!!!

Nice demo Chuck.
John I see you’re still doing your thing.
Subscribed!

Man, after months of "20mn video to explain if/else" it's really really nice to see again full power highly caffeinated Chuck

Mr. Chuck, i've been following u since 2020 bro. Im so glad i followed u all this years, u make me clear of my path, my careers. All i just want to say is thank you. Keep on what ur doing, if my god wills it, i keep on supporting ur content bro, ( muslim from malaysia ) 😁😁

Amazing! thank you for showing it

Always loved the fascinating coding style of Zer0-Day since the mid 90's.

Absolutely crazy. Great quality content. And scaaaary exploit.

Chuck definitely do more stuff like that!!

Yes more of its kind of videos will be great
I enjoyed every minute of it
Chuck you rock!

this content is amazing!! keep it up this way :)

This was GREAT. PLS make more of this videos :)

Great video as always and love too see John here aswell! I Followed you along was going to download the follina.doc from python webserver on the windows box, but windows defender deleted it and detected virus. So that is atleast a good thing, looks like Im a bit late to the party !

VERY interesting! Please do more videos like this!

awesome! thank you Chuck and John!

Nice Video NetworkChuck, thanks for the information and i think that you can disable the msdt with a registry key so we can be more safe.

More of these videos please!

Amazing content, well done!

Also interesting stuff besides follina: python web server and adding a NAT network in VirtualBox on-the-fly. Got it running. Thx a lot!

Yoo, a collab with John! Amazing video, congrats.

Thanks for your sharing

YES! More of this!

Awesome!!! Tnx for the demo! Btw, gotta love that bash prompt, can you share the code so I can paste it in my .bashrc?

Keep up the excellent work folks!

2 of my favorite youtubers looking at one of my favorite zero days

Thanks for sharing, this is cool stuff!

MS troubleshooter disabled, checked. Thank you for the video.

I often wonder if you record your Voice and Video at Normal speed and then speed it up before uploading? If not Kudos to you, pretty amazing.

Man I just can hear you talking for hours 😂
I'm french but I just so easily understand what you say without paying attention. I admire your eloquence buddy 👏😎

awesome work thanks for the quick response!

12:53 was expecting him to say to take another coffee break lolol

amazing video! Great work!

Jyst came across his channel, nobody warned me that the Vikings lineage was still going strong. What an evolution path, from raiding to coding.
Love the facial hair here, just kidding around. You look like a character in Vikings late seasons, the brother of a King if I recall correctly but his name I can't say.
Cheers

Wow nice video, especially liked the part with the python server, I didn't know you can do this it so cool

Wow! Great work 👏

I'm in love with this videos. I'm 16 and videos like this inspire me in hacking hobby. ❤️‍🔥

Very helpful lesson

DO MORE OF THIS !

To be honest I am someone how doesn't have an interest in hacking but youtube keeps suggesting your videos which are really fun to watch 🙃

Super interesting!
I don't know if any solution has been found yet. If anyone is interested , there is properly some workarounds, but the one I know about is to disable 'MSDT URL Protocol'.
Always amazing to see which ways hackers are getting into people's systems.
Thanks for another great video Chuck!

Windows Defender seems to have caught up with Follina. Word still reaches out to the server, but that's it. You get a warning and nothing else is happening - at least with my setup, don't feel too safe. I really like the idea of Chuck and John making content as a team, by the way!

great video, I love your content, greetings from Mexico

Dang, you showed the real experience. :)

Chuck, I think you’ve had enough coffee breaks. Love the videos!

Thanks for the video.

All your video are amazing. Could you create video for creating own Linux distro?

This was great! I was watching and when you created the new network after you had already generated the word document I was like “that’s not going to work anymore” ha ha!
Love yours and John’s content!

Love your beard and love your videos pls keep up your awesome videos coming. Thanks a lot

Do more videos like this please!!!

I'm 12 and learn so much from this channel. Thanks!

Superb..... I watch only like movie hacking video... Really don't know how
it's working..... Thanks .....

So good. Thanks.

Great stuff. Next time, ease up on the coffee a bit - it was making you hyper and jittery ... but very effective

Hey Chuck , ive actually come across the exact same thing yesterday except it wasnt a word document. It was a whole installation ISO of Windows 11 Pro , which my brother downloaded from the Pirate Bay. it triggered instantly once the installation was completed , and had some more effects to it whereby it damaged hardware so bad that the bios was messed up as well.

Excellent video! 👍

Thanks! Awesome video!

Vulnerability vids are top notch

Microsoft be like: it’s not a bug, it’s a feature

The intro kind of got me thinking - I can rickroll my friends with this and at the same time teach them about the Follina :D

damn unbelievable 💀. Great explanation John Hammond :D

hey I here (am 14) quit Linux like 4-5 months ago as i wasn't able to understand anything. but then i came across you tutorials (Kali for beginners) and now you gain 1 sub, and like to each video. thanks for helping man you are awesome. keep it up

I just got me AWS and love the Channel and education

Whoa chuck this is aswome you show us this!

Ow thank you and thanks to John 😊

this duo is perfect

Hey Chuck! What is inside that coffee, man? Your voice speed in that video was like 3.5X already!

What John Hammond!!! Please collab more

Be doing more on CVEs that arise from the wild chuck. Understood it better now.

thank you!

The way you talked walking through this reminded me of my brain 😂

i like these type of videos, they tell u the dangerous tool but never tell u how to ACTUALLY get it to work so i will, for people who has no programming background and dont know how to make your version of this vulnerability, run this on a windows that has updates disabled and hope the windows on the target PC is an old version that cant detect this vulnerability, and for people who can program, here is a small tip:
i honestly have no idea lol, if anyone actually can bypass the detection let me know lol

34 is not a “weird obfuscation” but just “ required so the Base64 receives payload string and decodes it and executes it, like a normal function call where the argument is a string, in this case, a base64 encoded payload

This entire day, I see this vulnerability everywhere lol 😂😂
Btw, this vulnerability works just on few versions of Office.

this is crazy, so technically they just dump that file in an email and send it to intended target and the recipient will just download and open and the rest is seeing your system crumbles xD