Saw something on twitter today about using the old standby program, iexpress.exe, which is still available in Win10, you can package your powershell scripts inside an executable. You can use it to run malicious powershell scripts etc…
SO I was thinking of some fun things to do with it, getting reverse shells, dumping passwords with mimikatz, compiling .cs files etc to evade AV and whitelisting. It’s fairly simple to do ,here’s an example of a powershell reverse shell: Continue reading
Contact Me
- Certifications:
Websites:
InfoSec Wiki
Whats My Pass?
Track Somebody
october27th group
BHAF Security
illmob Social Media
Categories
-
Recent Posts
RSS Blogroll
- Massive Skype Zero-Day Enables Remote Crashes
- Petya Or Not? Global Ransomware Outbreak Hits Europe's Industrial Sector, Thousands More
- No-Name Security Incidents Caused as Many Tears as WannaCry, Pros Say
- Complex Petya-Like Ransomware Outbreak Worse than WannaCry
- Google Hit With $2.7 Billion Antitrust Fine
- WannaCry Blame Game: Why Delayed Patching is Not the Problem
- Second Global Ransomware Outbreak Under Way
- Major Hole Plugged in Secure File Transfer Tool
- EternalBlue analysis
- MS17-010 update
Archives
Skype
Email
Keybase.io