How to Phish for User Passwords with PowerShell

tokyoneon // Spoofing credential prompts is an effective privilege escalation and lateral movement technique. It’s not uncommon to experience seemingly random password prompts for Outlook, VPNs, and various other authentication protocols in Windows environments. Adversaries will abuse functionalities built into Windows and PowerShell to invoke credential popups to acquire user passwords.  As defined by the MITRE […]

The post How to Phish for User Passwords with PowerShell appeared first on Black Hills Information Security.

Article Link: How to Phish for User Passwords with PowerShell - Black Hills Information Security