That is false, and not how whitelisting works. Imagine it like this, Antivirus is a list of things you can't do and Whitelisting is a list of things you can do.
-
This Tweet is unavailable.
-
This Tweet is unavailable.
-
-
Replying to @da_667 @infosecspy and
I think you're confused about whitelisting. I think you're doing this: Step 1. Find a "built-in" that lets you do what you want. Step 2. ??? Step 3. Arbitrary code execution.
1 reply 0 retweets 1 like -
Spell it out for me, I want to run wmic.exe on your computer and you have whitelisting installed, what do I do next? Let's imagine you're a regular user who can be easily tricked to running any attachment, downloading and running files, etc.
3 replies 0 retweets 2 likes -
Use wmic to turn off application whitelisting (almost all of them are registry entries - at worst case set the service to disabled at boot). Then proceed as usual.
3 replies 2 retweets 5 likes -
Replying to @GossiTheDog @da_667 and
That's a good Step 3, but first you need to get to the point where you can run wmic.exe (the Step 2). That's the bit I'm lost on.
1 reply 0 retweets 0 likes -
This Tweet is unavailable.
Cool, so we've reached this: Step 1. Find "built-in" Step 2. ??? Step 3a. Open a command prompt. Step 3b. Use wmic.exe to turn off whitelisting. Step 3c. Arbitrary code execution.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.