Saw something on twitter today about using the old standby program, iexpress.exe, which is still available in Win10, you can package your powershell scripts inside an executable. You can use it to run malicious powershell scripts etc…
SO I was thinking of some fun things to do with it, getting reverse shells, dumping passwords with mimikatz, compiling .cs files etc to evade AV and whitelisting. It’s fairly simple to do ,here’s an example of a powershell reverse shell:
just press ctrl+r , type in iexpress and hit enter.
chose the first selection and hit next.
hit next again
right click and download this file Reverse.ps1 and name it Reverse.ps1
select both of these checkboxes, youll get an error about Win95 but dont worry about it
choose no restart, the next window name your file and then hit next and save your package. You should have an exe created wherever you set the output to be.
Start a netcat listener
Ill be posting some more stuff later on this week when I have more time to play.