PowerShell
PowerShell Obfuscation: Stealth Through Confusion, Part I
Jun 19, 2020
To get into the spirit of this post, you should probably skim through the first few slides of this presentation by Daniel Bohannon and Le Holmes given at Black Hat...
How to use PowerShell Objects and Data Piping
Jun 19, 2020
This article is a text version of a lesson from our PowerShell and Active Directory Essentials video course (use code ‘blog’ for free access). The course has proven to be...
Windows PowerShell vs. CMD: What's The Difference?
May 14, 2020
PowerShell is Microsoft’s updated shell that replaced the previous command prompt (CMD). Learn how to take advantage of cmdlets, piping, and third-party extensions.
Windows PowerShell Scripting Tutorial For Beginners
May 14, 2020
New to PowerShell scripting? Explore these scripting tutorials to learn to write and execute basic scripts, PowerShell cmdlets, aliases, pipes and more.
PowerShell Array Guide: How to Use and Create
Mar 29, 2020
Learn how to best use PowerShell arrays — we'll cover the basics of how to create them, work with them as well as some more advanced techniques.
PowerShell Obfuscation: Stealth Through Confusion, Part II
Mar 29, 2020
Let’s step back a little from the last post’s exercise in jumbling PowerShell commands. Obfuscating code as a technique to avoid detection by malware and virus scanners (or prevent reverse...
How To Use PowerShell for Privilege Escalation with Local Computer Accounts
Mar 29, 2020
Privilege escalation is when an attacker is able to exploit the current rights of an account to gain additional, unexpected access. While this can be caused by zero-day vulnerabilities, state-level...
What is Endpoint Security? A Complete Guide
Oct 17, 2019
Endpoint security is a growing concern for enterprises in every industry, given the value of digital assets and data, and must be a cybersecurity priority.
Practical PowerShell for IT Security, Part V: Security Scripting Platform Gets a Makeover
Aug 22, 2017
A few months ago, I began a mission to prove that PowerShell can be used as a security monitoring tool. I left off with this post, which had PowerShell code...
Disabling PowerShell and Other Malware Nuisances, Part III
Jun 08, 2017
One of the advantages of AppLocker over Software Restriction Policies is that it can selectively enable PowerShell for Active Directory groups. I showed how this can be done in the...
Disabling PowerShell and Other Malware Nuisances, Part II
Jun 02, 2017
Whitelisting apps is nobody’s idea of fun. You need to start with a blank slate, and then carefully add back apps you know to be essential and non-threatening. That’s the...
How to use PowerShell for WannaCry / WannaCrypt cleanup and prevention
May 16, 2017
Use PowerShell to help test and resolve issues from WannaCry / WannaCrypt variants and other ransomware attacks.
Try Varonis free.
Deploys in minutes.