David Kennedy and the TrustedSec crew have released Magic Unicorn v2.8.
Magic Unicorn is “a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory, based on Matthew Graeber‘s PowerShell attacks and the PowerShell bypass technique presented by Dave and Josh Kelly at Defcon 18.
- shortens length and obfuscation of unicorn command
- removes direct -ec from PowerShell command
This is a Security Bloggers Network syndicated blog post authored by Russ McRee. Read the original post at: HolisticInfoSec™