ControlPipe using Powershell

Question

ControlPipe using Powershell

APT-ZERO opened this issue a year ago · 3 comments

Hi, Is it possible to control r77 using Powershell?

Answer 1 · 2024-02-13T20:15:52.000Z

Sure. Since PowerShell allows you to use C#, you have full .NET capabilities. The example I have prodived is in C++, so you have to write it in .NET within PowerShell instead.

Answer 2 · 2024-02-14T07:37:25.000Z

That is great, but is it possible to control r77 using pure PowerShell 2.0 script/command

Answer 3 · 2024-02-14T15:40:40.000Z

I guess you want to avoid a .NET DLL being compiled and written to disk, because in your workflow, you access the control pipe in a fileless manner? ;) I needed to avoid cmdlets, too, in the AMSI bypass. It was a pain...

Anyway, I saw a PS example here that shows code for writing to a named pipe. So it should be entirely possible.