Introducing PS>Attack: An offensive PowerShell toolkit
PS>Attack is a tool that I built to make it easy to use PowerShell offensively. It bundles a lot of the most awesome offensive PowerShell tools into a self contained, custom console. This console is designed to be safe for use in real engagement as the tools are encrypted before being embedded into the executable. When the console is started, these tools are decrypted straight into memory, meaning that the plaintext payloads never touch the hard drive.
This talk was given at CarolinaCon in 2016 and counts as the official release of the tool. It covers what the tool does and features a demo that covers using PS>Attack to escalate privelages and exfiltrate the Active Directory database from a network.
PS>Attack is available on my github page here: https://github.com/jaredhaight/psattack
- CarolinaCon 12
- Appsec California 2017