🐚 GTFOBins πŸͺŸ LOLBAS πŸ’Ύ Compiled Binaries 🩸 BloodHound 🩸 bloodyAD πŸ“œ Certipy ☁️ Cloud ⚑ goexec πŸ€– HackTricks πŸ”Œ HardwareATT πŸ“¦ Impacket 🏰 InternalATT πŸ”€ Ligolo-ng 🐱 Mimikatz πŸ’£ msfvenom πŸ”§ NetExec πŸ€– OSAI πŸ’₯ PATT 🍳 Recipes 🎟️ Rubeus 🐍 Sliver
πŸͺŸ LOLBAS / Powershell.exe

Powershell.exe

Powershell.exe is a a task-based command-line shell built on .NET.

Execute

Execute PowerShell cmdlets, .NET code, and just about anything else your heart desires

powershell.exe -ep bypass -file c:\path\to\a\script.ps1

Set the execution policy to bypass and execute a PowerShell script without warning — MITRE: T1059.001 — Privileges: User

Execute PowerShell cmdlets, .NET code, and just about anything else your heart desires

powershell.exe -ep bypass -command "Invoke-AllTheThings..."

Set the execution policy to bypass and execute a PowerShell command — MITRE: T1059.001 — Privileges: User

Execute PowerShell cmdlets, .NET code, and just about anything else your heart desires

powershell.exe -ep bypass -ec IgBXAGUAIAA8ADMAIABMAE8ATABCAEEAUwAiAA==

Set the execution policy to bypass and execute a very malicious PowerShell encoded command — MITRE: T1059.001 — Privileges: User