Introducing PS Attack, A Portable PowerShell Attack Toolkit – Jared Haight

PS Attack is a new project being released at CarolinaCon. It is a tool for generating a portable PowerShell attack environment that makes it easy for pentesters to incorporate PowerShell into their bag of tricks. The generated environment is a self contained exe that comes with a lot of the latest and greatest offensive PowerShell tools, including commands for Privilege Escalation, Recon and Data Exfiltration. It uses a couple of techniques to evade antivirus and Incident Response teams, making it suitable for use during live engagements. In this talk we will cover how PS Attack came about, some of the design decisions behind it and how you can use it to wreck shop on your next assessment.