Common Information
| Type | Value |
|---|---|
| Value |
powershell.exe |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2016-04-30 | 1 | PowerShell Empire Download - Post-Exploitation Hacking Tool - Darknet - Hacking Tools, Hacker News & Cyber Security | ||
| Details | Website | 2016-04-13 | 7 | Meterpreter stage AV/IDS evasion with powershell | ||
| Details | Website | 2016-03-16 | 174 | Jump List Forensics: AppID Master List (400+ AppIDs) | ||
| Details | Website | 2016-01-22 | 5 | Trojan.DNSChanger circumvents Powershell restrictions | Malwarebytes Labs | ||
| Details | Website | 2016-01-03 | 17 | Protecting Windows Networks – AppLocker | ||
| Details | Website | 2015-12-15 | 4 | Pupy Download - Open-Source Remote Administration Tool - RAT - Darknet - Hacking Tools, Hacker News & Cyber Security | ||
| Details | 2015-12-09 | 87 | PowerPoint Presentation | |||
| Details | Website | 2015-11-23 | 3 | SmartResponse Shell | LogRhythm | ||
| Details | Website | 2015-11-12 | 4 | Poor man’s Hyper-V cloning from VHD/VHDX | ||
| Details | Website | 2015-09-28 | 12 | 使用Invoke-Mimikatz.ps1批量获取windows密码 | ||
| Details | Website | 2015-07-02 | 2 | PowerShell $Profile: The six options and their precedence · Mike F. Robbins | ||
| Details | Website | 2015-05-01 | 14 | toolsmith: Attack & Detection: Hunting in-memory adversaries with Rekall and WinPmem | ||
| Details | Website | 2014-12-11 | 4 | Phase Bot – A Fileless Rootkit (Part 1) – MalwareTech | ||
| Details | Website | 2014-11-12 | 8 | CVE-2014-6332: it’s raining shells | forsec | ||
| Details | Website | 2014-09-30 | 13 | Using Mutexes to Write Data to the Same Logfile Across Processes With PowerShell | ||
| Details | Website | 2014-09-09 | 5 | 15 Ways to Bypass the PowerShell Execution Policy | ||
| Details | Website | 2014-08-10 | 56 | I’m sure there is a better way to accomplish this… | ||
| Details | Website | 2014-05-16 | 5 | Lateral Movement with PowerShell | ||
| Details | Website | 2013-12-28 | 12 | Reduce the size of WinSXS on Windows 7 SP1 | ||
| Details | Website | 2013-11-29 | 3 | Friday Fun: New-PSWindow | ||
| Details | Website | 2013-10-05 | 16 | Dumping a domain worth of passwords with mimikatz :: malicious.link — welcome | ||
| Details | Website | 2013-03-14 | 2 | Use PowerShell to add an additional Domain Controller to an existing Windows Server 2012 Active Directory Domain · Mike F. Robbins | ||
| Details | Website | 2013-03-09 | 3 | Loading automatically the ConfigMgr 2012 SP1 PowerShell module | ||
| Details | Website | 2012-08-23 | 67 | Hexacorn | Blog Finding Smoking Gun and going beyond that – Helpful Forensic Artifacts | ||
| Details | Website | — | 27 | UNKNOWN |