Sponsor of the Day:
Jerkmate
https://blogs.iis.net/bariscaglar/iisadministration-powershell-cmdlets-new-feature-in-windows-10-server-2016/
Baris Caglar's Blog - IISAdministration PowerShell Cmdlets (New feature in Windows 10 / Server 2016)
baris caglarpowershell cmdletsnew featurewindows 10server 2016
https://detection.fyi/mbabinski/sigma-rules/2024_cicada3301_ransomware/proc_creation_win_hyperv_stopvm/
Hyper-V Virtual Machine Discovery Shutdown via Powershell Cmdlets | Detection.FYI
Detects powershell process used to find and shut down local Hyper-V VMs using the Stop-VM cmdlet, as documented in the 2024 Morphisec report on Cicada3301 …
hyper v virtualvia powershelldetection fyimachinediscovery
https://detection.fyi/sigmahq/sigma/windows/powershell/powershell_script/posh_ps_powerview_malicious_commandlets/
PowerView PowerShell Cmdlets - ScriptBlock | Detection.FYI
Detects Cmdlet names from PowerView of the PowerSploit exploitation framework.
powershell cmdletsdetection fyi