Peter Ewane (@eaterofpumpkin) is a security researcher and a mostly blue teamer for the Alien Vault Labs Team. When not playing with computers, Peter enjoys trying and making interesting cocktails and collecting whisk(e)y.
What the shell is going on? A Primer detecting malicious PowerShell activity