Ushbu o'quv birligi quyidagi o'quv maqsadlarini qamrab oladi:

• Windows library files bilan hujum tayyorlash
• Windows shortcuts dan foydalanib code execution ni amalga oshirish

Ko'plab xavfsizlik mahsulotlari malicious macros ni skanerlaydi. Microsoft shuningdek, ushbu tahdidni kamaytirish va oldini olish uchun qo'llanmalar1 va Group Policy Object (GPO)2 templates3 taqdim etadi. Bundan tashqari, ko'pgina ijtimoiy muhandislik xabardorlik dasturlari ushbu vector ni oldini olishga qaratilgan. Bu omillar ushbu vector ni muvaffaqiyatli amalga oshirishni qiyinlashtiradi.

Ushbu o'quv birligida biz kamroq ma'lum, lekin bir xil darajada samarali bo'lgan Windows library files4 ni o'rganamiz.

1(Microsoft Documentation, 2021), https://docs.microsoft.com/en-us/DeployOffice/security/plan-security-settings-for-vba-macros-in-office ↩︎

2(Microsoft Documentation, 2018), https://docs.microsoft.com/en-us/previous-versions/windows/desktop/policy/group-policy-objects ↩︎

3(Microsoft Documentation, 2022), https://www.microsoft.com/en-us/download/details.aspx?id=49030 ↩︎

4(Microsoft Documentation, 2021), https://docs.microsoft.com/en-us/windows/client-management/windows-libraries ↩︎

11.3.1. Obtaining Code Execution via Windows Library Files