Also known as the Tijuana box, is an older laptop I bought awhile back that I’ve used for either testing some of the tools I’ve used, or bringing to some of the conferences I have attended in the past that is somewhat disposable. The story behind the Tijuana box is pretty simple. It all started with the Tijuana wallet, in reference to a spare wallet I would bring along with me to….get ready for the shock, Tijuana.
Page 3 of 13
pOWershell obFUsCation
This was an interesting rabbit hole I ventured into. What started as a simple alert for an end user, turned into what felt like a CTF as I decided to dig deeper, and beat this alert like I was going to make an omelet out of it. While I could have moved onto the next thing, I wanted to not only see what the payload intended to do, but dissect the payload to figure out how it was created. This is part one, the Blue part of this story.