Chris EastwoodAnalysing Encoded Powershell and ShellcodeBase64 encoded PowerShell commands can often be a quick win for the identification of suspicious activity. Recently, I've come across some…Apr 26, 20211Apr 26, 20211
Chris EastwoodShellbag AnalysisAnalysis of Shellbags is extremely useful method of determining what file or folder actions have been taken on a host by a specific user.Nov 17, 2020Nov 17, 2020