PowerShell-Red-Team
Invoke-PSObfuscation
PowerShell-Red-Team | Invoke-PSObfuscation | |
---|---|---|
1 | 3 | |
463 | 226 | |
- | - | |
4.1 | 0.0 | |
5 months ago | almost 2 years ago | |
PowerShell | PowerShell | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
PowerShell-Red-Team
-
Is there any simple PowerShell web server available?
Start taking a stab at coding it, but then found this one that's close to what I was aiming for: https://github.com/tobor88/PowerShell-Red-Team/blob/master/Start-SimpleHTTPServer.ps1
Invoke-PSObfuscation
-
Kali Linux Meterpreter AV Evasion.
XOR obfuscation is probably one of the most reknowned methods or simple concatenation techniques like this tool does also works wonders: https://github.com/gh0x0st/Invoke-PSObfuscation/blob/main/layer-0-obfuscation.md
-
Well, it happened. I got let go today.
Now, I'm not saying that the OP was trying to put their hand in the till, but at the very least I don't think that they are being completely transparent in the original post: if you work in a BANKING environment, then you don't run downloaded scripts out of curiosity, especially ones that are trying to obfuscate and bypass security like the one that the OP has said he was interested in (https://github.com/gh0x0st/Invoke-PSObfuscation), and if you are doing that, you shouldn't be working in a this environment; it shows a terminal lack of insight and awareness. Even if you don't know about a policy, you'd hope for a shred of common sense.
What are some alternatives?
Pode - Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers
SkyArk - SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
WSL2-port-forwarding-guide - Forwards Windows ports into WSL2 at startup (without logging-in)
RedTeaming-Tactics-and-Techniques - Red Teaming Tactics and Techniques
WebServer - Powershell WebServer is a Powershell module that starts a webserver (without the need for IIS)
JackKnife - JackKnife is a Network Defense Tool Repository for Powershell. It is made up multiple powershell scripts I've made or borrowed to make work easier
Pode.Web - Web template framework for use with the Pode PowerShell web server
sysmon-modular - A repository of sysmon configuration modules
Polaris - A cross-platform, minimalist web framework for PowerShell
MrKaplan - MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
Nidhogg - Nidhogg is an all-in-one simple to use rootkit.
Chimera - Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.