Thinking Simpler to Bypass Antivirus
#powershell #evasion

On a previous engagement I sat in front of my computer banging my head, trying to come up with a simple reverse shell that I could be confident would get past my clients antivirus. My plan was to send a Rubber Ducky in the mail that when plugged into my victims computer would emulate a keyboard and inject a series of keystrokes that would give me remote access to the computer. But I was stuck struggling trying to figure out a way to get past antivirus.

Introducing SpideyTools!
#powershell #web-app-hacking #owasp

Today I am releasing the beginnings of a suite of PowerShell tools to assist in web application penetration testing, geared specifically towards conducting testing according to the OWASP Testing Guide. The suiteā€™s name: SpideyTools.