How can we use .NET's profiling interface to gain improved visibility of functions commonly used by web shells?

Setup instructions for Attacking and Defending Microsoft IIS - BSides Canberra 2024 Training.

Compromised IIS machine keys can lead to permanent access to IIS hosts via view state exploitation. In this post, we'll learn how to exploit view state via compromised IIS machine keys, how to detect a compromise and how to remediate a compromised host.

Exploring the mysteries of IIS' App_Web files.