资讯

The Hacker News10 天

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

ScarCruft’s Operation HanKook Phantom uses RokRAT malware in spear-phishing campaigns, targeting South Korean academics for ...
How-To Geek on MSN13 天

So You've Set Up Linux On Windows Using WSL, Here's What You Can Do With It

Open the Debian terminal on your Windows machine and type or paste in this command: cat /etc/os-release. It will print ...
CSOonline3月

How to log and monitor PowerShell activity for suspicious scripts and commands

Attackers are increasingly abusing sanctioned tools to subvert automated defenses. Tracking your Windows fleet’s PowerShell use — especially consultant workstations — can provide early indications of ...
The Hacker News6月

Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites

Cybersecurity researchers are calling attention to a new phishing campaign that employs the ClickFix technique to deliver an open-source command-and-control (C2) framework called Havoc. "The threat ...
ilovepowershell.com10月

Windows Registry with PowerShell: Reading, Writing and Deleting Keys

I think for a registry export I would probably just use the dos command. The PowerShell isn’t doing anything very special here, no extra functionality and I would just keep it simple. Still, there ...
Bleeping Computer1 年

ViperSoftX malware covertly runs PowerShell using AutoIT scripting

The latest variants of the ViperSoftX info-stealing malware use the common language runtime (CLR) to load and execute PowerShell commands within AutoIt scripts to evade detection. CLR is a key ...
Windows Report1 年

If Microsoft Copilot doesn't want to come up with PowerShell scripts, here's what you can do

Who would’ve guessed Microsoft Copilot might not want to answer coding-related tasks? Well, you’d be surprised. This Reddit user, for instance, found themselves in a weird situation: after asking ...