Abstract

PowerShell has changed the way how Windows is used, secured and also the way Windows is 0wned. It is an automation platform for everybody; developers, defenders and attackers. PowerShell provides easy access to almost everything in a Windows machine and network. It comes installed by default in modern versions of Windows. During a penetration test, it could be really helpful to use this powerful shell and scripting language for further attacks.

This workshop would help anyone who wants to know more about PowerShell from a security perspective. You will learn various techniques like privilege escalation, backdoors, keylogging, data exfiltration, dumping system secrets in plain, persistence, pivoting, in-memory code execution… the list goes on.

Open source tools which help in achieving this would also be discussed including those written by the trainer. This workshop aims to forever change how you pen test a Windows based environment.