Home How To Finding and Decoding Malicious PowerShell Scripts

How To

Finding and Decoding Malicious PowerShell Scripts

Posted on October 17, 2017

1,375

Mari DeGrazia has published a very useful post, which will help you to learn how to find and decode malicious PowerShell scripts. You will learn, which events to check, how to detect PowerShell and decode scripts. According to Mari, it’s only the first part, she will keep writing and teach us how to detect malicious PowerShell scripts in registry (part 2) and memory (part 3).

Related Articles
More In How To

Results from the 2018 Volatility Contests

Results from the 2018 Volatility Contests have been published. We congratulate Aliz Hammon…

22 hours ago
20 second read
Building your Android Application Testing Toolbox

This webcast explores the following topics: 1) Choosing the best test device 2) Rooting yo…

2 days ago
30 second read
Juicy PDFs

This new video is the next episode of “Introduction to Malware Analysis” serie…

4 days ago
22 second read

Load More Related Articles

Gone in 10 Seconds: Snapchat Forensics

John Walther has written an article about Snapchat forensics. He used an iOS device runnin…

2 weeks ago
23 second read
How to Deploy Cuckoo Sandbox

Marc Rivero López presented a how-to guide that will help you to deploy Cuckoo Sandbox …

October 16, 2018
14 second read
How to Disassemble a Word Document with Embedded Macros

Here is a post by Paul Cimino, in which he goes through the steps to create a macro-embedd…

July 24, 2018
20 second read

Load More In How To

Click To Comment

Finding and Decoding Malicious PowerShell Scripts

Results from the 2018 Volatility Contests

Building your Android Application Testing Toolbox

Juicy PDFs

Gone in 10 Seconds: Snapchat Forensics

How to Deploy Cuckoo Sandbox

How to Disassemble a Word Document with Embedded Macros

Leave a Reply Cancel reply

About Us

Popular Posts

Windows 10 Forensics

Android Forensics Using Some Open Source Tools

Windows 10 Time Rules

Timeline

Results from the 2018 Volatility Contests

Building your Android Application Testing Toolbox

Juicy PDFs

CAINE 10.0 “Infinity” is out

A Planned Methodology for Forensically Sound IR in Office 365

Leave a Reply Cancel reply

Tags

Follow Us

About Us

Popular Posts

Timeline

Results from the 2018 Volatility Contests

Building your Android Application Testing Toolbox

Juicy PDFs

CAINE 10.0 “Infinity” is out

A Planned Methodology for Forensically Sound IR in Office 365