Microsoft Windows PowerShell has finally hit the mainstream for system administrators,
defenders, and attackers. Though nearly ten years old as of 2014, PowerShell has only
recently become ubiquitous across both user endpoints and servers in most enterprise
environments. Microsoft Windows 7 SP1 and Windows Server 2008 R2 were the first versions
of the operating system to include PowerShell (version 2.0) installed by default. Since then,
updated versions of PowerShell have been included in every subsequent release of Windows,
through PowerShell 4.0 on Windows Server 2012 R2 and on Windows 8.11
.
As is often the case, the increased availability of PowerShell has paralleled the development of
research on ways attackers can take advantage of it
more here............http://www.fireeye.com/resources/pdfs/fireeye-lazanciyan-investigating-powershell-attacks.pdf
defenders, and attackers. Though nearly ten years old as of 2014, PowerShell has only
recently become ubiquitous across both user endpoints and servers in most enterprise
environments. Microsoft Windows 7 SP1 and Windows Server 2008 R2 were the first versions
of the operating system to include PowerShell (version 2.0) installed by default. Since then,
updated versions of PowerShell have been included in every subsequent release of Windows,
through PowerShell 4.0 on Windows Server 2012 R2 and on Windows 8.11
.
As is often the case, the increased availability of PowerShell has paralleled the development of
research on ways attackers can take advantage of it
more here............http://www.fireeye.com/resources/pdfs/fireeye-lazanciyan-investigating-powershell-attacks.pdf