DSCompromised - A Windows DSC Attack Framework

Overview

Explore a PowerShell-based toolkit that exploits Windows Desired State Configuration (DSC) for malicious purposes in this Black Hat conference talk. Learn the fundamentals of DSC, Microsoft's advanced enterprise management technology, and discover how attackers can manipulate it. Follow a step-by-step guide on using the DSCompromised framework to establish a command-and-control server, create payloads, infect targets, and even reinfect remediated systems. Gain insights from both offensive and defensive perspectives, including techniques for detecting and investigating DSC abuse on compromised systems. Benefit from source code examples and live demonstrations of various attack scenarios in this 59-minute presentation by Ryan Kazanciyan and Matt Hastings.

Syllabus

DSCOMPROMISED: A Windows DSC Attack Framework

Taught by

Black Hat

Reviews

Start your review of DSCompromised - A Windows DSC Attack Framework

Coursera Cuts Jobs Despite $100M Revenue Milestone

Most common

Popular subjects

Popular courses

DSCompromised - A Windows DSC Attack Framework

Overview

Syllabus

Taught by

Reviews

Coursera Cuts Jobs Despite $100M Revenue Milestone

Taught by

Advanced Windows PowerShell Desired State Configuration

Reinvestigating PowerShell Attacks

Install & Configure SQL Server with PowerShell DSC

PowerShell Desired State Configuration - DSC

Windows 2003 - Payload Anatomy & Future Mutations

Abusing Windows Management Instrumentation - WMI

8 Best PowerShell Courses for 2024: Automate Scripts and Tasks

Never Stop Learning.