Beyond SecureString: Writing Safer PowerShell Tools

  • PowerShell is generally a safe environment for developers and administrators alike, but it’s easy to introduce risk to your enterprise in just a few lines of code. As simple functions become useful scripts and eventually find their way converted to full-blown enterprise tools there is little chance that any security testing or evaluation is done. Almost everyone knows not to put plaintext passwords in scripts, but we will discuss several less obvious ways to create vulnerabilities in your environment and how they could be attacked.

 

Leave a Reply