Descrição
Many Windows applications have multiple ways in which the same command line can be expressed, usually for compatibility or ease-of-use reasons. As a result, command-line arguments are implemented inconsistently making detecting specific commands harder due to the number of variations. This post shows how more than 40 often-used, built-in Windows applications are vulnerable to forms of command-line obfuscation, and presents a tool for analysing other executables.
Invoke-Obfuscation — Hiding Payloads To Avoid Detection
Windows Red Team Defense Evasion Techniques
Obfuscating PowerShell Commands – Liam Cleary [MVP Alumni and MCT]
Windows Command-Line Obfuscation
Automated Obfuscation of Windows Malware and Exploits Using O-LLVM
Command Line - Babel Obfuscator
Commandline Obfusaction - Red Team Notes
Using Deep Learning to Better Detect Command Obfuscation
Invoke-Obfuscation – Liam Cleary [MVP Alumni and MCT]
de
por adulto (o preço varia de acordo com o tamanho do grupo)
:max_bytes(150000):strip_icc()/psexec-ipconfig-command-5c6ef8dc46e0fb0001b68174.png)
