← LibraryTechnique entry
W-CSV-INJECTIONCredential Access
CSV / Formula Injection
=cmd|'/c calc'!A1 in exported CSV — fires when an analyst opens the file in Excel.
§ Where this technique fits
W-CSV-INJECTION is catalogued under the Credential Access tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.