/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

www.labofapenetrationtester.com
| | www.darkoperator.com
3.2 parsecs away

Travel
| | [AI summary] The provided text discusses various methods to secure PowerShell environments against potential threats, focusing on monitoring, logging, and policy enforcement. It outlines the use of Group Policy to enable module logging, which helps track PowerShell cmdlet activities. The text also covers the use of Software Restriction Policies (SRP) and AppLocker for controlling application execution. Additionally, it mentions the PowerShell v3 feature __PSLockdownPolicy as a tool for restricting PowerShell functionalities. The author emphasizes the importance of planning and testing these security measures in a controlled environment to ensure effectiveness.
| | adsecurity.org
3.0 parsecs away

Travel
| | [AI summary] This technical article details essential security features in PowerShell version 5, including script block logging, system-wide transcripts, constrained mode, and Antimalware Scan Interface (AMSI) integration to defend against enterprise attacks.
| | pentestlab.blog
3.7 parsecs away

Travel
| | 1 post published by Administrator on March 9, 2017
| | lab52.io
20.4 parsecs away

Travel
| The Lab52 team has analysed a cyber campaign in which attackers deploy a new variant of the PlugX malware. Both the infection chain and the various artefacts used in the cyberattack share multiple similarities with the SmugX campaign, attributed to threat actors Red Delta and Mustang Panda, allegedly linked to the Chinese government.