Windows Defender is integrated with Windows 10, so it's no wondering it's up there for the most popular Anti-virus solution. Once you login to your new Windows 10 machine, it's pretty much ready to go. The plus side is that Defender is a pretty solid AV and if you look at Gartner, they even rate them as the best......
Malicious parties might chose to encode their commands or scripts. The reason why is that if your auditing isn't up to scratch, it may go unseen. In some cases it can also help bypass the AV....
Read the article here: https://securethelogs.com/redrabbit-ps1/
Password Managers are brilliant! They allow users to create and use complex passwords because they give us a nice secure place to store them. Using Password managers also can also prevent users from writing them down or reusing passwords, which is a huge deterrent against hackers looking to compromise your accounts. It's a win, win....or … Continue reading Stealing Passwords From Clipboard
I've combined all of my current scripts into one to allow easy execution. To see the script, visit: https://github.com/securethelogs/Securethelogs/blob/master/README.md
Read the article here: https://securethelogs.com/hacking-with-powershell-red-team/
Live Network Scanner: PSPanner: https://securethelogs.com/pspanner-network-scanner/Network Scanner (With Event Logging for SIEMs)PSWatcher: https://securethelogs.com/pswatcher/
PSBruteZip allows you to brute force your way into Zip files should you have forgotten the password. A pre-req is that 7Zip is installed as it uses their commands. They function is better than Windows (I find).
Powersosh is a module which can help you do simple OSINT to find profiles online.
Email addresses are what malicious parties collect because the more they have, the more they can Phish/target. Having the ability to enumerate these without generating logging attempts would be a dream for them. Sure they could use other OSINT techniques and steal them, but guessing may be quicker and less work....