Alexander Andersson
Blogs, Articles, and Posts
Attacking PowerShell CLIXML Deserialization
(truesec.com)
In this article, we will learn that using PowerShell's CLIXML deserialization could lead to
By: Alexander Andersson submitted:Sep 20 2024
In this article, we will learn that using PowerShell's CLIXML deserialization could lead to
undesired effects, including remote code execution. We will also see that widely used solutions, like PowerShell Remoting and PowerShell Direct (Hyper-V), rely on such deserialization and could make you vulnerable to this kind of attack.
By: Alexander Andersson submitted:Sep 20 2024
