LASCON 2018 has ended
Back To Schedule
Tuesday, October 23 • 9:00am - 5:00pm
Two-Day Training: Attacking Windows w/Powershell & Enterprise Active Directory Attack Playbook w/Aelon Porat (Day 1) LIMITED

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Limited Capacity seats available

Attacking Windows Environments with Powershell: Intro

This condensed, hands-on workshop will introduce students to Powershell’s offensive and defensive capabilities, showcasing its attractiveness to sysadmins, defenders, and attackers alike. We’ll perform different attacks using popular frameworks, as well as creating out unique attack scripts. We’ll bypass antivirus and whitelisting applications, connecting to our PoC command-and-control centers as we remotely take over a computer: we’ll steal documents, grab screen and email content, turn on the mic and webcam, control the mouse and keyboard, modify settings, defeat two-factor authentication, execute programs at will.. anything that a real attacker may do. From a defender perspective, we’ll understand how such attacks work, review the artifacts that they leave behind, and review some of the holes that allow them to take place. Time permitting, we’ll also write scripts that monitor and alert on some of the more common attacks.

Students are expected to understand Windows operations and network infrastructure, but no prior Powershell experience is required.

Students will need to bring their own computer, capable of simultaneously running at least two guest Windows 10 VMs.


Aelon Porat

Aelon Porat is an information security manager at Cision and a content provider at vali.training. He has extensive experience attacking and defending corporate environments. Aelon likes to jump inside networks and out of planes, and in his spare time, he enjoys demoing, speaking... Read More →

Tuesday October 23, 2018 9:00am - 5:00pm CDT
Magnolia B Room