Name: Abusing Windows EFS to steal data using PowerShell
Start: 2024-08-27T11:00:00-04:00
End: 2024-08-27T12:00:00-04:00

* Using PowerShell scripts to encrypt data on a machine using EFS:
* Key creation
* Certificate generation
* Using PowerShell scripts to save the keys to memory
* Using PowerShell scripts to erase the decryption keys and certificate store in file locations
* Using the compromised certificate to encrypt files and folders

IT users and ManageEngine

ManageEngine's Cybersecurity Meetups

ManageEngine

Technology

System Administration

Network Security

Information Security

ITIL ITSM

Help Desk

DevOps

Cloud Security

Network Management & Monitoring

Cybersecurity

IT Professionals

Enterprise Mobility

Device Management and Security

Microsoft Endpoint Configuration Manager 

Abusing Windows EFS to steal data using PowerShell

Online event

Share

ManageEngine's Cybersecurity Meetups

Abusing Windows EFS to steal data using PowerShell

ManageEngine's Cybersecurity Meetups

Details

Members are also interested in