PowerShell one liner to ping sweep a range of IPv4 addresses

I was in London a couple of weeks ago on an ethical hacking training course. It was very interesting subject matter, and our instructor mentioned his increasing interest in PowerShell for scripting. It chimed with me, as Iā€™m finding PowerShell to be a very useful technology for a wide range of tasks.

One of the useful capabilities of PowerShell is the interactive shell, and the opportunity to quickly develop scripts that automate a laborious task.

Continue reading “PowerShell one liner to ping sweep a range of IPv4 addresses”

Ten practices to promote forensic readiness

Forensic readiness (FR) is a useful concept that is encountered a great deal in public sector information security, but not so much in the private sector. I’ve enjoyed working with FR policies, and you can too, with the right preparation and direction of travel.

Continue reading “Ten practices to promote forensic readiness”

PowerShell Threats Grow Further and Operate in Plain Sight — Symantec


Malicious PowerShell attacks increased by 661 percent from the last half of 2017 to the first half of 2018, and doubled from the first quarter to the second of 2018.

There are some good guides from the major security vendors on the risks of PowerShell exploitation. No solution is complete, but some sensible steps can be taken.

Data sanitisation ā€“ protecting confidential data from recovery

Assets when they are reused or disposed of, must be subject to an appropriate sanitisation process to ensure confidential information cannot be recovered. Many organisations do not sanitise data storage before re-use internally. However, more worryingly, many organisations are not sanitising data storage media before devices are sold on, leaving them exposed to data theft, industrial espionage and potential extortion.

Continue reading “Data sanitisation ā€“ protecting confidential data from recovery”