homepage
Open menu
Contact Sales

Purple PowerShell: Current attack strategies & defenses

PowerShell has long been considered the main \Living off the Land ' tool in Microsoft Windows. PowerShell-based attack tools such as Empire have proven to be extremely effective for pentesters and real adversaries alike. However, over the past few years, Microsoft has stepped up its game and many security features have been implemented in PowerShell. Examples include Constrained Language Mode, Script Block Logging & AMSI. 'How effective are these defenses in 2019? In this interactive webcast (we will do several demo's). 'We will also look at attacking techniques and defenses.

Erik Van Buggenhout is the lead author of SANS SEC599 - Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses. Next to his activities at SANS, Erik is also a co-founder of NVISO, a European cyber security firm with offices in Brussels, Frankfurt and Munich.

Login to Register

Related Content

Blog
N2C_blog_image.png
Security Awareness, Cybersecurity Leadership, Cloud Security, Open-Source Intelligence (OSINT), Industrial Control Systems Security, Digital Forensics, Incident Response & Threat Hunting, Cybersecurity and IT Essentials, Cyber Defense, Offensive Operations, Pen Testing, and Red Teaming, CyberLive, Workforce Development, Career Development, Why Certify, Imposter Syndrome, NetWars, Mentorship, Job Hunting, Operating System & Device In-Depth, Artificial Intelligence (AI)
A Visual Summary of SANS New2Cyber Summit 2024
Check out these graphic recordings created in real-time throughout the event for SANS New2Cyber Summit 2024
370x370-person-placeholder.png
Alison Kim
read more
Blog
Offensive Operations, Pen Testing, and Red Teaming, Penetration Testing and Red Teaming
Continuous Purple Teaming: A Practical Approach for Strengthening Your Offensive Capabilities
This post will guide you through actionable strategies to implement adversary emulation effectively with some concrete examples.
Jeroen.jpg
Jeroen Vandeleur
read more
Blog
HackFest_blog_image.png
Offensive Operations, Pen Testing, and Red Teaming, Open-Source Intelligence (OSINT), Penetration Testing and Red Teaming
A Visual Summary of SANS HackFest Summit
Check out these graphic recordings created in real-time throughout the event for SANS HackFest Summit 2023
370x370-person-placeholder.png
Alison Kim
read more