π Join us in-person and virtually at our Wild West Hackin’ Fest: information security conferences β https://wildwesthackinfest.com/
π Register for Infosec Webcasts, Anti-casts & Summits. β https://poweredbybhis.com
This talk explores the dynamic potential of PowerShell for Linux in the realms of penetration testing and red teaming. Delving into its capabilities, attendees will discover how this versatile tool enhances offensive security strategies. Intended for cybersecurity professionals and enthusiasts seeking to leverage PowerShell’s prowess within Linux environments, the session promises insights and practical guidance for optimizing offensive tactics.
00: 00 – Intro
00: 06 – Agenda
00: 37 – Evolution of PowerShell for Linux
01: 07 – How Emotet inspired the use of PowerShell for Linux
01: 50 – Fixed bugs to allow PowerShell on Kali
02: 23 – Why use it?
02: 58 – Is PowerShell dead?
04: 00 – Pentester pros and cons of using PowerShell for Linux
05: 12 – Real-life scenario #1 – Initial Access
06: 21 – Real-life scenario #2 – Finding user-created variables
07: 23 – Real-life scenario #3 – Extracting user credentials
07: 58 – Credential variable
08: 20 – Converting hexcode to ASCII
08: 39 – DEMO #1 – Cadiclus
11: 39 – DEMO #2 – Write-Output $PROFILE
15: 51 – Q&A – Using proxy chains? Not yet.
///Black Hills Infosec Socials
Twitter: https://twitter.com/BHinfoSecurity
Mastodon: https://infosec.exchange/@blackhillsinfosec
LinkedIn: https://www.linkedin.com/company/antisyphon-training
Discord: https://discord.gg/ffzdt3WUDe
///Black Hills Infosec Shirts & Hoodies
https://spearphish-general-store.myshopify.com/collections/bhis-shirt-collections
///Black Hills Infosec Services
Active SOC: https://www.blackhillsinfosec.com/services/active-soc/
Penetration Testing: https://www.blackhillsinfosec.com/services/
Incident Response: https://www.blackhillsinfosec.com/services/incident-response/
///Backdoors & Breaches – Incident Response Card Game
Backdoors & Breaches: https://www.backdoorsandbreaches.com/
Play B&B Online: https://play.backdoorsandbreaches.com/
///Antisyphon Training
Pay What You Can: https://www.antisyphontraining.com/pay-what-you-can/
Live Training: https://www.antisyphontraining.com/course-catalog/
On Demand Training: https://www.antisyphontraining.com/on-demand-course-catalog/
Antisyphon Discord: https://discord.gg/antisyphon
Antisyphon Mastodon: https://infosec.exchange/@Antisy_Training
///Educational Infosec Content
Black Hills Infosec Blogs: https://www.blackhillsinfosec.com/blog/
Wild West Hackin’ Fest YouTube: https://www.youtube.com/wildwesthackinfest
Antisyphon Training YouTube: https://www.youtube.com/antisyphontraining
Active Countermeasures YouTube: https://youtube.com/activecountermeasures
Threat Hunter Community Discord: https://discord.gg/threathunter
Join us at the annual information security conference in Deadwood, SD (in-person and virtually) β Wild West Hackin’ Fest: https://wildwesthackinfest.com/