Name: Fun with One Line of Powershell
Start: 2016-06-25T10:30:00-0400
End: 2016-06-25T11:00:00-0400

Back To Schedule

Fun with One Line of Powershell

This talk shows how to use one line of PowerShell in different ways to get meterpreter on a system. Beginning with the creation of a malicious ps1 file using msfvenom, starting a handler, and hosting the malicious ps1 for targets to download. Once the target runs the one liner, it'll download and execute the malicious ps1 file giving you a meterpreter session. I then go over different ways to get targets to run the one liner using a Teensy, a shortcut on a network share, a macro enabled spreadsheet, a misconfigured mssql server (blank SA), and using ysoserial to exploit vulnerable java deserialization functionality.

Speakers

Matthew Turner

I live in North Carolina and I work for a fortune 500 financial institution on their Red Team. I have GPEN, GWAPT, GCIH, GSEC certifications. I was born and raised in the greater Cleveland area and moved to the Durham/Raleigh area a little over 2 years ago.

Saturday June 25, 2016 10:30am - 11:00am EDT
B-Sides Liquor Lounge (Downstairs)

BSides Cleveland 2016

Matthew Turner

Attendees (27)

BSides Cleveland 2016

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Matthew Turner

Attendees (27)