Don't use IE

Question

Don't use IE

moyvting opened this issue 2 years ago · 4 comments

moyvting commented 2 years ago

if you never used IE ,You can avoid this attack.

Answer 1 · 2022-08-29T11:17:35.000Z

good to know

Answer 2 · 2022-08-29T11:30:56.000Z

Especially as IE is no longer visible on modern Windows systems.

I had the same issue on a testing machine. "Workaround" is to finish the IE Wizard.

Answer 3 · 2022-08-30T09:45:25.000Z

That is due to Invoke-WebRequest, I think it's possible to replace it with Invoke-RestMethod. That is what I used in my script for downloading Google Chrome (https://github.com/effektsvk/getchrome-function). If I have the time, I will test it and submit a PR. :)

Answer 4 · 2022-08-31T09:15:08.000Z

Thank you for your input @moyvting @corsch @effektsvk
This was really useful. I just added the -i option that generates the PS payload adjusted to use "Invoke-RestMethod' instead of 'Invoke-WebRequest', so now the user can choose.