PowerSploit

MITRE

Tipo Malware:
Tool

Prima attivita:
Unknown

Ultima attivita:
Unknown

Dettagli:

[PowerSploit](https://attack.mitre.org/software/S0194) is an open source, offensive security framework comprised of [PowerShell](https://attack.mitre.org/techniques/T1059/001) modules and scripts that perform a wide range of tasks related to penetration testing such as code execution, persistence, bypassing anti-virus, recon, and exfiltration. (Citation: GitHub PowerSploit May 2012) (Citation: PowerShellMagazine PowerSploit July 2014) (Citation: PowerSploit Documentation)

Tecniche Associate (28)

ID	ATT&CK	Tattiche
T1003.001	LSASS Memory	-
T1005	Data from Local System	-
T1012	Query Registry	-
T1027.005	Indicator Removal from Tools	-
T1027.010	Command Obfuscation	-
T1047	Windows Management Instrumentation	-
T1053.005	Scheduled Task	-
T1055.001	Dynamic-link Library Injection	-
T1056.001	Keylogging	-
T1057	Process Discovery	-
T1059.001	PowerShell	-
T1087.001	Local Account	-
T1113	Screen Capture	-
T1123	Audio Capture	-
T1134	Access Token Manipulation	-

Usato da Attori (9)

APT33
Nation-state

APT41
Nation-state

Earth Lusca
Unknown

FIN7
Criminal

Leviathan
Unknown

menuPass
Unknown

MuddyWater
Nation-state

Patchwork
Unknown

TA505
Unknown

Metadata

ID:	706
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00