Obfuscating PowerShell Commands using Invoke-Obfuscation

Source: https://github.com/danielbohannon/Invoke-Obfuscation

Thanks to one of Dave Kennedy’s talks for making me aware of this tool for obfuscating PowerShell code.  As PowerShell is used more and more in attacks the higher the likelihood there is for defenders to attempt to detect malicious commands or look for specific strings.  To evade these detection techniques we can try to encode our commands to make them much harder to detect.

I’ll use the previous Bash Bunny Payload as an example with this tool.

Continue reading “Obfuscating PowerShell Commands using Invoke-Obfuscation”