PowerShell Archives - ThreatsHub Cybersecurity News

Blue teams helping red teams: A tale of a process crash, PowerShell, and the MITRE ATT&CK evaluation

June 11, 2020 TH Author Cybersecurity, Microsoft security intelligence, Microsoft Threat Protection, MITRE, PowerShell, Step 19

Inspired by MITRE’s transparency in publishing the payloads and tools used in the attack simulation, we’ll describe the mystery that is Step 19 and tell a story about how blue teams, once in a while, can share important learnings for red teams.
The post Blue teams helping red teams: A tale of a process crash, PowerShell, and the MITRE ATT&CK evaluation appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Deep learning rises: New methods for detecting malicious PowerShell

September 3, 2019 TH Author AI and machine learning, Cybersecurity, deep learning, Endpoint security, machine learning, Microsoft Defender ATP, Microsoft security intelligence, PowerShell, Security Intelligence, Threat protection

We adopted a deep learning technique that was initially developed for natural language processing and applied to expand Microsoft Defender ATP’s coverage of detecting malicious PowerShell scripts, which continue to be a critical attack vector.
The post Deep learning rises: New methods for detecting malicious PowerShell appeared first on Microsoft Security. READ MORE HERE…