PowerAssembly
Fork me on Github
You can find a complete version of the project that is described in this paper on my Github account.
https://github.com/DarkCoderSc/PowerAssemblyPowerAssembly
Map in current PowerShell Instance Memory .NET Assemblies from remote web server.
When Assembly is mapped, you can invoke it's main with a command line argument.
The advantage of this technique is to avoid having assemblies written on disk. Everything happens in memory.
I'm using this script during my penetration tests / labs right after getting an initial shell on Windows to load other .NET Tools (Ex: ShapHound, ShapUp etc..)
You will find more information about the project on the official Github repository
Written the Oct. 22, 2021, 11:34 a.m. by Jean-Pierre LESUEUR
Updated: ago.