PowerShell is a required skill set for hands-on security professionals. The combination of its flexibility, extensibility, and ubiquity on modern Windows platforms makes PowerShell a go-to tool for Windows Systems Administrators. What’s useful for SysAdmins is also useful for Information Security practitioners, both in offensive and defensives roles. We’ll get hands-on with PowerShell in this class demonstrating, explaining, and building key patterns and features used by security professionals.
Designed for students purely focused on interesting and useful techniques, we’ll go through several key topics and techniques and the importance behind them.
At the end of the course students will be familiar with several techniques and patterns useful to security professionals in both offensive and defensive roles. Students will be able to understand and modify existing tools and well as author their own.
Covered Topics- Advanced Filesystem Interaction
- WebApps – REST APIs and Driving Internet Explorer
- Reflection and Windows API Interaction
- Process Interaction and Control
- Active Directory Interaction
PrerequisitesBefore attending this workshop students must have a comfortable understanding of scripting with PowerShell.
Required MaterialsThis is a hands-on workshop. Students are expected to bring a functional laptop with a suitable operating system and software pre-installed.
- Windows 10, Windows Server 2012R2, or Windows Server 2016 (Virtual Machines are acceptable)
- PowerShell Core 6.2.4.
Available from
https://github.com/PowerShell/PowerShell/releases/tag/v6.2.4