For this to work, you'll also need to enable macros in the word program, so two suspicious button clicks. Besides, gmail can detect spam mails now and antivirus software can easily detect the malicious file, especially if it's a meterpreter payload.
there's a little feature called 'Mark of the Web.' It keeps Word docs downloaded from the internet non-executable by default. So, if you're wondering why macros aren't working, it's because you need to go to Properties and hit 'Unblock' manually.
Windows 10 and 11 Antivirus does not detect the file when scanning it but blocks the remote connection when enabling the Word macro, it only works if you have the Antivirus disabled
Great video, tho I'm pretty sure squarex is a fork of Kasm Workspaces in some way. Wanting to self host Kasm Workspaces since 2021 but I already run Linux :D
Terrifying. But, Raj, while in squareX environment, is there a way to know if the file is safe? At what point can you feel free to save it to your local machine?
The reason we use isolation sandboxes in the cloud is that no solution can claim to detect malicious activity 100% of the time. At the very least, that’s why it’s more prudent to open documents from unknown senders within the isolation sandboxes like SquareX 😊
Would we get hacked only if we open the file url after downloading it and opening it and then clicking some link inside it *OR* just by downloading and opening the url *OR* even horrifyingly just by even downloading it? Whats the exact moment we get compromised? Please explain?
bro google doesn't detect coz when your friend sends you the mail it only contain normal link the main thing starts when you click link and it starts downloading the payload to your server where Google cannot detect coz your downloading from browser
For this to work, you'll also need to enable macros in the word program, so two suspicious button clicks. Besides, gmail can detect spam mails now and antivirus software can easily detect the malicious file, especially if it's a meterpreter payload.
Hey from where did u learn all this
Your right also it can read macros before hand to check any malicious power shell script so it will not let you open the document in the first place
Agree 💯 %
0:01
We all know the disclaimer is not for us but for TH-cam themselves who might demonetise our dear friend Raj for making educational content.
😮😮😮😮 wow 😳😳
there's a little feature called 'Mark of the Web.' It keeps Word docs downloaded from the internet non-executable by default. So, if you're wondering why macros aren't working, it's because you need to go to Properties and hit 'Unblock' manually.
Dear Tech Raj, thank you for covering us!
Windows 10 and 11 Antivirus does not detect the file when scanning it but blocks the remote connection when enabling the Word macro, it only works if you have the Antivirus disabled
You can use Google Docs to avoid such attacks.
Great video, tho I'm pretty sure squarex is a fork of Kasm Workspaces in some way. Wanting to self host Kasm Workspaces
since 2021 but I already run Linux :D
But why isn’t the document saved also docm ?
Can you make a video about securing your router settings to prevent hackers and also a video about securing your online browser? 🙏 thank you
Terrifying.
But, Raj, while in squareX environment, is there a way to know if the file is safe?
At what point can you feel free to save it to your local machine?
The reason we use isolation sandboxes in the cloud is that no solution can claim to detect malicious activity 100% of the time. At the very least, that’s why it’s more prudent to open documents from unknown senders within the isolation sandboxes like SquareX 😊
How is SquareX different from firefox containers?
nowadays macros dont work anymore right
What if I downloaded it and viewed it and now my computer is compromised. Now what can I do???
Now you can run antivirus to scan your pc 😊
@@TechnoEveryday what Antivirus would you prefer. I am using Malwarebytes, is it ok?
@@usningame5177 well i don't trust any antivirus
will my antivirus not stop this? Whats the use of having then
Congratulations on earnings OSCP cert, plz do a video about your experience on oscp
Yes please I too would enjoy this very much!
Bro I brought your course ( WhatsApp ) but didn't receive
So this is basically a promotional video
This will not work as windows defender will stop downloading the executable
Just dont download docs from gmail specifically.
it can be done through WhatsApp and discord too
how?@@b07x
also I learned gmail reverse shell doesnt work and google easily detects a virus@@b07x
He made this video just to advertise the sponser.
Would we get hacked only if we open the file url after downloading it and opening it and then clicking some link inside it *OR* just by downloading and opening the url *OR* even horrifyingly just by even downloading it?
Whats the exact moment we get compromised?
Please explain?
I think it's when you download the file to your device, open it and enable editing.
Can it work on pH
Mind blowing, Raj
Is your video sponsored?
It is.
SquareX is free of cost,
And what about windows defender? Will it not detect this ?
Up
@@antoniopellegrini8704 what can you elaborate?
Vulnerabilities 😢
How to make it for android
Informative ❤
Peole using a 32bit windows and other OS. 🗿🗿
It's good but What about a virtual machine
An average user doesnt use virtual machine.
This what happened to LTT I believe
hi sir i need youe help can you help me please 😢😢😢
very helpful video
Wow 🙀.. sir Gmail detect Nehi karta hai kya ??? Ye toh bohut dengerous hai 😮😮😮😮
bro google doesn't detect coz when your friend sends you the mail it only contain normal link the main thing starts when you click link and it starts downloading the payload to your server where Google cannot detect coz your downloading from browser
@@motivationinspiration01 🆘🆘🆘🆘 jabardas hai ye toh
Great 🎉🎉🎉
File Make
The GOAT is dead 🤧
😂 good.
First
Please filter and edit the audio and cut the saliva noise from it... It's so gross to hear especially when you are learning something
Ayoo 💀