Microsoft Defender for Endpoint

AS2Go | Attack Scenario To Go

FeaturedLeave a comment 
AS2Go is an acronym for Attack Scenario To Go. 
 
AS2Go is written in PowerShell and goes along the cyber kill chain, with stops at Password Spray, Reconnaissance, Privilege Escalation, Sensitive Data Access & Exfiltration and Domain Compromise.

The GIF shows a typical attack along the kill-chain. Starting with stolen credentials and ending with a compromised domain.

Continue reading

AS2Go | Prepare & Test the Ransomware Attack

Herr HoZi1 Comment 
This post describes how to prepare the Victim PC for the attack scenario, to simulate an ransomware attack against the domain controller.

Assuming you already finished lab setup 3/3 | Victim PC you have to do the following steps on your Victim PC.

  • download files from GitHub to c:\temp\AS2Go
  • optional create an creates a self-signed certificate
Continue reading