this post was submitted on 24 Oct 2023
1719 points (96.9% liked)

Memes

45665 readers
1055 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 21 points 1 year ago* (last edited 1 year ago) (1 children)

Enterprise security software tends to err much more on the side of caution.

There are plenty of Windows features who's usage will flag because they are also favourite tactics by actual threats, such as Powershell one liners. Bonus if it's in Base64.

[โ€“] [email protected] 14 points 1 year ago (1 children)

Powershell one liners are uglier than the worst winner of Obfuscated Perl Contest. Super cringe....

[โ€“] [email protected] 11 points 1 year ago

That I would agree... But they're excellent for getting fileless reverse shell on a victim's machine