SlideShare a Scribd company logo

Automating security with PowerShell

J
Jaap Brasser

The document outlines a presentation on automating security using PowerShell, covering both defensive and offensive techniques. Key topics include differences between editors, configuring and using VSCode and ISE, and demonstrations of PowerShell logging and script obfuscation. The document also provides references for further exploration on the topic.

Technology
1 of 12
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
Automating Security with PowerShell Jaap Brasser @jaap_brasser
@Jaap_Brasser jaapbrasser.com/about
Agenda PowerShell & .Demo Defensive Offensive & .Demo Q & A
Agenda State of PowerShell
Agenda • Differences between editors • Configure VSCode • Working with Vscode • Setting up the ISE • Working with the ISE and ISESteroids • Questions Demo Mimikatz & PowerShell Logging
Demo Summary • Setup PowerShell logging • Dump credentials • Reconfigure logging • Follow bread crumbs • Determined what ran
Agenda Offensive PowerShell
Agenda • Differences between editors • Configure VSCode • Working with Vscode • Setting up the ISE • Working with the ISE and ISESteroids • Questions Demo Obfuscation & Detection
Demo Summary • Determined character frequency • Used Vector Frequency • Encoded existing scripts • Looked at different methods of obfuscation
Agenda Defensive PowerShell
Questions
References • github.com/jaapbrasser/Events/tree/master/BSidesAms2017 • www.bsidesams.nl • jaapbrasser.com

More Related Content

What's hot (20)

PDF
Manage your infrastructure with PowerShell
Jaap Brasser
 
PDF
Paint it blue with PowerShell
Jaap Brasser
 
PPTX
Building your own JEA Configuration
Jaap Brasser
 
PPTX
Breakdown the GUI - PowerShell logging to automate everything
Jaap Brasser
 
PDF
Reach the next level with PowerShell
Jaap Brasser
 
PPTX
A brave new world – mac os x, power shell and linux
Jaap Brasser
 
PPTX
SenchaCon 2016: Being Productive with the New Sencha Fiddle - Mitchell Simoens
Sencha
 
PPTX
PowerShell Uncensored
Jaap Brasser
 
PDF
Navigate around the edge with PowerShell
Jaap Brasser
 
PPTX
Power shell v3 session1
Vladimir Márquez
 
PDF
Automate it with Azure Functions
Jaap Brasser
 
PDF
Hello world - intro to node js
Refresh Annapolis Valley
 
PDF
Create awesome Azure Functions with PowerShell
Jaap Brasser
 
PDF
Automate it with Azure Functions
Jaap Brasser
 
PDF
Automate everything with PowerShell
Jaap Brasser
 
PDF
Go with the flow!
Jaap Brasser
 
PPTX
Azure DevOps Overview [Arabic]
ahmadezzeir
 
PDF
Using Chat Automation - ChatOps
Jaap Brasser
 
PDF
Discover Microsoft's Cloud Automation Suite
Jaap Brasser
 
PPTX
Getting Started with ASP.NET 5
Brij Mishra
 
Manage your infrastructure with PowerShell
Jaap Brasser
 
Paint it blue with PowerShell
Jaap Brasser
 
Building your own JEA Configuration
Jaap Brasser
 
Breakdown the GUI - PowerShell logging to automate everything
Jaap Brasser
 
Reach the next level with PowerShell
Jaap Brasser
 
A brave new world – mac os x, power shell and linux
Jaap Brasser
 
SenchaCon 2016: Being Productive with the New Sencha Fiddle - Mitchell Simoens
Sencha
 
PowerShell Uncensored
Jaap Brasser
 
Navigate around the edge with PowerShell
Jaap Brasser
 
Power shell v3 session1
Vladimir Márquez
 
Automate it with Azure Functions
Jaap Brasser
 
Hello world - intro to node js
Refresh Annapolis Valley
 
Create awesome Azure Functions with PowerShell
Jaap Brasser
 
Automate it with Azure Functions
Jaap Brasser
 
Automate everything with PowerShell
Jaap Brasser
 
Go with the flow!
Jaap Brasser
 
Azure DevOps Overview [Arabic]
ahmadezzeir
 
Using Chat Automation - ChatOps
Jaap Brasser
 
Discover Microsoft's Cloud Automation Suite
Jaap Brasser
 
Getting Started with ASP.NET 5
Brij Mishra
 

Similar to Automating security with PowerShell (20)

PPTX
Silicon Valley JUG - How to generate customized java 8 code from your database
Speedment, Inc.
 
PPTX
How to generate customized java 8 code from your database
Speedment, Inc.
 
PPTX
SQL Start! 2019 - Ancona - Distribuisci ed amministra le tue istanze SQL Serv...
Marco Obinu
 
PDF
JAVA EE training from 3rd-oct-2015
Naz Ish
 
PDF
Web a Quebec - JS Debugging
Rami Sayar
 
PPTX
JavaOne2016 - How to Generate Customized Java 8 Code from Your Database [TUT4...
Speedment, Inc.
 
PPTX
How to JavaOne 2016 - Generate Customized Java 8 Code from Your Database [TUT...
Malin Weiss
 
PPTX
SenchaCon 2016 - How to Auto Generate a Back-end in Minutes
Speedment, Inc.
 
PPTX
SenchaCon 2016 - How to Auto Generate a Back-end in Minutes
Malin Weiss
 
PPTX
SenchaCon 2016: How to Auto Generate a Back-end in Minutes - Per Minborg, Emi...
Sencha
 
DOC
Java online training from hyderabad
revanthonline
 
KEY
Introduction to node.js
Jakub Nesetril
 
PPTX
Demystifying osquery for fun and profit asim jaweesh - null dubai dec 2019
Asim Jaweesh
 
PPTX
Building a REST API Microservice for the DevNet API Scavenger Hunt
Ashley Roach
 
PPTX
Philly CocoaHeads 20160414 - Building Your App SDK With Swift
Jordan Yaker
 
DOC
Ibm websphere server administration training
FuturePoint Technologies
 
PDF
we45 DEFCON Workshop - Building AppSec Automation with Python
Abhay Bhargav
 
PDF
Here Be Dragons – Advanced JavaScript Debugging
FITC
 
PDF
FITC - Here Be Dragons: Advanced JavaScript Debugging
Rami Sayar
 
PDF
JHipster
Yuen-Kuei Hsueh
 
Silicon Valley JUG - How to generate customized java 8 code from your database
Speedment, Inc.
 
How to generate customized java 8 code from your database
Speedment, Inc.
 
SQL Start! 2019 - Ancona - Distribuisci ed amministra le tue istanze SQL Serv...
Marco Obinu
 
JAVA EE training from 3rd-oct-2015
Naz Ish
 
Web a Quebec - JS Debugging
Rami Sayar
 
JavaOne2016 - How to Generate Customized Java 8 Code from Your Database [TUT4...
Speedment, Inc.
 
How to JavaOne 2016 - Generate Customized Java 8 Code from Your Database [TUT...
Malin Weiss
 
SenchaCon 2016 - How to Auto Generate a Back-end in Minutes
Speedment, Inc.
 
SenchaCon 2016 - How to Auto Generate a Back-end in Minutes
Malin Weiss
 
SenchaCon 2016: How to Auto Generate a Back-end in Minutes - Per Minborg, Emi...
Sencha
 
Java online training from hyderabad
revanthonline
 
Introduction to node.js
Jakub Nesetril
 
Demystifying osquery for fun and profit asim jaweesh - null dubai dec 2019
Asim Jaweesh
 
Building a REST API Microservice for the DevNet API Scavenger Hunt
Ashley Roach
 
Philly CocoaHeads 20160414 - Building Your App SDK With Swift
Jordan Yaker
 
Ibm websphere server administration training
FuturePoint Technologies
 
we45 DEFCON Workshop - Building AppSec Automation with Python
Abhay Bhargav
 
Here Be Dragons – Advanced JavaScript Debugging
FITC
 
FITC - Here Be Dragons: Advanced JavaScript Debugging
Rami Sayar
 
JHipster
Yuen-Kuei Hsueh
 
Ad

More from Jaap Brasser (15)

PDF
Level up your SQL and Azure, by using Rubrik
Jaap Brasser
 
PDF
Your first PowerShell script: Open the door to automation
Jaap Brasser
 
PDF
Write Serverless Applications with PowerShell and Azure Functions
Jaap Brasser
 
PDF
From PowerShell Function to Serverless code with Azure Functions
Jaap Brasser
 
PDF
Bridge the gap with Chat Automation
Jaap Brasser
 
PDF
Automate Anything with Microsoft Flow
Jaap Brasser
 
PDF
Automate yourself out of a job - Use ChatOps!
Jaap Brasser
 
PDF
Microsoft Flow and PowerShell combined to automate everything
Jaap Brasser
 
PDF
Workshop automating with microsoft flow
Jaap Brasser
 
PDF
Using Microsoft Flow for IT Professionals
Jaap Brasser
 
PDF
Automating everything with Microsoft Flow
Jaap Brasser
 
PPTX
Bringing Dev and Ops together with ChatOps
Jaap Brasser
 
PDF
Fun with PowerShell 6.0 JEA Remoting and cross-platform
Jaap Brasser
 
PDF
PowerShell from 50000 feet
Jaap Brasser
 
PDF
Automation How i came to see the light
Jaap Brasser
 
Level up your SQL and Azure, by using Rubrik
Jaap Brasser
 
Your first PowerShell script: Open the door to automation
Jaap Brasser
 
Write Serverless Applications with PowerShell and Azure Functions
Jaap Brasser
 
From PowerShell Function to Serverless code with Azure Functions
Jaap Brasser
 
Bridge the gap with Chat Automation
Jaap Brasser
 
Automate Anything with Microsoft Flow
Jaap Brasser
 
Automate yourself out of a job - Use ChatOps!
Jaap Brasser
 
Microsoft Flow and PowerShell combined to automate everything
Jaap Brasser
 
Workshop automating with microsoft flow
Jaap Brasser
 
Using Microsoft Flow for IT Professionals
Jaap Brasser
 
Automating everything with Microsoft Flow
Jaap Brasser
 
Bringing Dev and Ops together with ChatOps
Jaap Brasser
 
Fun with PowerShell 6.0 JEA Remoting and cross-platform
Jaap Brasser
 
PowerShell from 50000 feet
Jaap Brasser
 
Automation How i came to see the light
Jaap Brasser
 
Ad

Recently uploaded (20)

PDF
Open Source Milvus Vector Database v 2.6
Zilliz
 
PDF
“MPU+: A Transformative Solution for Next-Gen AI at the Edge,” a Presentation...
Edge AI and Vision Alliance
 
PDF
Cracking the Code - Unveiling Synergies Between Open Source Security and AI.pdf
Priyanka Aash
 
PPTX
New ThousandEyes Product Innovations: Cisco Live June 2025
ThousandEyes
 
PDF
How to Visualize the ​Spatio-Temporal Data Using CesiumJS​
SANGHEE SHIN
 
PDF
EIS-Webinar-Engineering-Retail-Infrastructure-06-16-2025.pdf
Earley Information Science
 
PDF
LLM Search Readiness Audit - Dentsu x SEO Square - June 2025.pdf
Nick Samuel
 
PDF
Enhancing Environmental Monitoring with Real-Time Data Integration: Leveragin...
Safe Software
 
PDF
Database Benchmarking for Performance Masterclass: Session 2 - Data Modeling ...
ScyllaDB
 
PDF
Database Benchmarking for Performance Masterclass: Session 1 - Benchmarking F...
ScyllaDB
 
PDF
UiPath Agentic AI ile Akıllı Otomasyonun Yeni Çağı
UiPathCommunity
 
PDF
FME as an Orchestration Tool with Principles From Data Gravity
Safe Software
 
PDF
From Chatbot to Destroyer of Endpoints - Can ChatGPT Automate EDR Bypasses (1...
Priyanka Aash
 
PDF
Salesforce Summer '25 Release Frenchgathering.pptx.pdf
yosra Saidani
 
PDF
Java 25 and Beyond - A Roadmap of Innovations
Ana-Maria Mihalceanu
 
PPTX
Paycifi - Programmable Trust_Breakfast_PPTXT
FinTech Belgium
 
PPSX
Usergroup - OutSystems Architecture.ppsx
Kurt Vandevelde
 
DOCX
Daily Lesson Log MATATAG ICT TEchnology 8
LOIDAALMAZAN3
 
PDF
“Scaling i.MX Applications Processors’ Native Edge AI with Discrete AI Accele...
Edge AI and Vision Alliance
 
PDF
My Journey from CAD to BIM: A True Underdog Story
Safe Software
 
Open Source Milvus Vector Database v 2.6
Zilliz
 
“MPU+: A Transformative Solution for Next-Gen AI at the Edge,” a Presentation...
Edge AI and Vision Alliance
 
Cracking the Code - Unveiling Synergies Between Open Source Security and AI.pdf
Priyanka Aash
 
New ThousandEyes Product Innovations: Cisco Live June 2025
ThousandEyes
 
How to Visualize the ​Spatio-Temporal Data Using CesiumJS​
SANGHEE SHIN
 
EIS-Webinar-Engineering-Retail-Infrastructure-06-16-2025.pdf
Earley Information Science
 
LLM Search Readiness Audit - Dentsu x SEO Square - June 2025.pdf
Nick Samuel
 
Enhancing Environmental Monitoring with Real-Time Data Integration: Leveragin...
Safe Software
 
Database Benchmarking for Performance Masterclass: Session 2 - Data Modeling ...
ScyllaDB
 
Database Benchmarking for Performance Masterclass: Session 1 - Benchmarking F...
ScyllaDB
 
UiPath Agentic AI ile Akıllı Otomasyonun Yeni Çağı
UiPathCommunity
 
FME as an Orchestration Tool with Principles From Data Gravity
Safe Software
 
From Chatbot to Destroyer of Endpoints - Can ChatGPT Automate EDR Bypasses (1...
Priyanka Aash
 
Salesforce Summer '25 Release Frenchgathering.pptx.pdf
yosra Saidani
 
Java 25 and Beyond - A Roadmap of Innovations
Ana-Maria Mihalceanu
 
Paycifi - Programmable Trust_Breakfast_PPTXT
FinTech Belgium
 
Usergroup - OutSystems Architecture.ppsx
Kurt Vandevelde
 
Daily Lesson Log MATATAG ICT TEchnology 8
LOIDAALMAZAN3
 
“Scaling i.MX Applications Processors’ Native Edge AI with Discrete AI Accele...
Edge AI and Vision Alliance
 
My Journey from CAD to BIM: A True Underdog Story
Safe Software
 

Automating security with PowerShell