Saw something on twitter today about using the old standby program, iexpress.exe, which is still available in Win10, you can package your powershell scripts inside an executable. You can use it to run malicious powershell scripts etc…
SO I was thinking of some fun things to do with it, getting reverse shells, dumping passwords with mimikatz, compiling .cs files etc to evade AV and whitelisting. It’s fairly simple to do ,here’s an example of a powershell reverse shell: Continue reading
Contact Me
Social Media
Categories
-
Recent Posts
RSS Blogroll
- GitLab Doles Out Half a Million Bucks to White Hats
- Pairing Privacy and Security with Digital Identities in Retail
- Visa Warns of Targeted PoS Attacks on Gas Station Merchants
- Elegant sLoad Carries Out Spying, Payload Delivery in BITS
- Critical Bug in WordPress Plugins Open Sites to Hacker Takeovers
- 'Motivating People Who Want the Struggle': Expert Advice on InfoSec Leadership
- Fortinet Buys CyberSponse for SOAR Capabilities
- Endpoint Protection: Dark Reading Caption Contest Winners
- Link Dump 12/9/19
- Link Dump 11/21/19
Archives
- July 2019
- May 2019
- September 2018
- June 2018
- October 2017
- September 2017
- June 2017
- May 2017
- April 2017
- December 2016
- November 2016
- October 2016
- July 2016
- May 2016
- April 2016
- March 2016
- January 2016
- October 2015
- July 2015
- May 2015
- March 2015
- February 2015
- January 2015
- November 2014
- October 2014
- September 2014
- June 2014
- March 2014
- February 2014
- June 2013
- April 2013
- March 2012
- September 2009
Skype
Email
Keybase.io