LOLBAS/yml/OtherMSBinaries/Te.yml

23 lines
733 B
YAML
Raw Normal View History

2018-06-09 00:15:06 +02:00
---
Name: te.exe
Description: Testing tool included with Microsoft Test Authoring and Execution Framework (TAEF).
Author: 'Oddvar Moe'
2018-06-09 00:15:06 +02:00
Created: '2018-05-25'
Commands:
- Command: te.exe bypass.wsc
Description: Run COM Scriptlets (e.g. VBScript) by calling a Windows Script Component (WSC) file.
Usecase: Execute Visual Basic script stored in local Windows Script Component file.
Category: Execution
Privileges: User
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
2018-06-09 00:15:06 +02:00
Full Path: ''
Code Sample: []
Detection: []
Resources:
- https://twitter.com/gn3mes1s/status/927680266390384640?lang=bg
Acknowlegement:
- Person: Giuseppe N3mes1s
Handle: '@gN3mes1s'