PowerShell Module Function Export in Constrained Language

PowerShell Team August 14, 2018 Aug 14, 2018 08/14/18

PowerShell Module Exporting Functions in Constrained Language PowerShell offers a number of ways to expose functions in a script module. But some options have serious performance or security drawbacks. In this blog I describe these issues and provide simple guidance for creating performant and secure script modules. Look for a module soon in ...

PowerShell Standard Library: Build single module that works across Windows PowerShell and PowerShell Core

Steve Lee August 6, 2018 Aug 6, 2018 08/6/18

This is the first of a series of blog posts that will help you take advantage of a new NuGet package PowerShellStandard Library 5.1.0. This package allows developers to create modules that are portable between Windows PowerShell 5.1 and PowerShell Core 6.0. This means that you can create PowerShell modules that run on Windows, Linux, and ...

PowerShell Injection Hunter: Security Auditing for PowerShell Scripts

PowerShell Team August 3, 2018 Aug 3, 2018 08/3/18

At the DEFCON security conference last year, we presented the session: "Get $pwnd: Attacking Battle Hardened Windows Server".

In this talk, we went through some of the incredibly powerful ways that administrators can secure their high-value systems (for example, Just Enough Administration) and also dove into some of the mistakes that administrators sometimes make when exposing their PowerShell code to an attacker. The most common form of mistake is script injection, where a script author takes a parameter value (supplied by an attacker) and runs it in a trusted context (such as a function exposed in a Just Enough Administration endpoint).