Command and Control with PoshC2

Focused View

Jeff Stein

27:33

97 View

Exercise Files

command-control-poshc2.zip

Module 1 - Course Overview

1. Course Overview.mp4

01:12

Module 2 - Leveraging Poshc2 to Control Victim Systems

1. Introduction.mp4

03:04

2. Gaining Initial Access with the PoshC2 Implant.mp4

08:22

3. Using PoshC2 to Enumerate a Target and Exfiltrate Data.mp4

06:10

4. Elevate Account Privileges and Move Laterally Across a Victim Network.mp4

07:02

Module 3 - Resources

1. Additional Resources.mp4

01:43

Description

PoshC2 is a powerful tool that uses PowerShell to control a victim system toward furthering red teaming objectives beyond exploitation throughout the remaining life of an engagement. In this course, you will learn Command and Control using PoshC2.

What You'll Learn?

On the Windows OS, PowerShell can offer effective control of a system, this course will give you the skills and understanding to harness PowerShell to further your red teaming objectives towards command and control of a victim system. In this course, Command and Control with PoshC2 you’ll cover how to utilize PoshC2 to execute privilege escalation in a red team environment. First, you’ll demonstrate ways to gain system access and evade detection using the PoshC2 implant. Next, you’ll apply the built-in PoshC2 modules to send commands to enumerate the victim system. Finally, you’ll simulate the harvesting of credentials to escalate privilege with PowerShell. When you’re finished with this course, you’ll have the skills and knowledge to execute these techniques Application Layer Protocol: Web Protocols-T1071.001, Account Discovery: Local Account- T1087.001 & Remote Access Software-T1219 using PoshC2.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

PowerShell

Jeff Stein

Instructor's Courses

Jeff Stein is an Information Security Architect focused on topics covering Governance, Application, Cloud, Network, Data and Physical security with an eye towards building robust security programs. In addition to security he has a background in Systems Engineering and Administration. Jeff has written on various security topics for industry publications and has worked in both the tech and fintech space. His background in IT also includes employment with the U.S. House of Representatives and the U.S. Senate. Jeff received a Master of Science in Information Security & Assurance from Western Governors University and holds numerous certifications, including his CISSP, GCED, Certified Ethical Hacker, CHFI, Security+ and Palo Alto ACE. Prior to becoming an IT professional, Jeff served in the U.S. Peace Corps as a community development worker and teacher in the Federated States of Micronesia. He spends his free time collecting comic books, playing guitar and with his wife and two children.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.