Realistically how useful is phishing in 2023?

Phishing is a common technique for retrieving credentials. If the end goal is getting an RCE on the network without developing something custom, how useful is phishing if the end goal in RCE?

A majority of off the shelf tooling is heavily signatured along with normal techniques. I guess I’m asking without developing custom / AMSI bypasses how well are you doing bypassing AV and EDR for RCE via phishing?

submitted by /u/thehunter699
[link] [comments]

Read More >>