{"author_url":"https://blog.hatena.ne.jp/soji256/","url":"https://soji256.hatenablog.jp/entry/2019/06/03/193723","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fsoji256.hatenablog.jp%2Fentry%2F2019%2F06%2F03%2F193723\" title=\"Cuckoo \u306b\u96e3\u8aad\u5316 Poweshell \u89e3\u6790\u30e2\u30b8\u30e5\u30fc\u30eb CurtainCuckoo \u3092\u5c0e\u5165\u3059\u308b - setodaNote\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","provider_url":"https://hatena.blog","height":"190","description":"CurtainCuckoo \u3068\u306f Curtain \u306f\u96e3\u8aad\u5316\u3055\u308c\u305f PowerShell \u3092\u53ef\u8aad\u5316\u3059\u308b\u305f\u3081 Cuckoo \u30e2\u30b8\u30e5\u30fc\u30eb\u3067\u3059\u3002\u3053\u306e\u30e2\u30b8\u30e5\u30fc\u30eb\u3092\u4f7f\u3046\u305f\u3081\u306b\u306f\u30b5\u30f3\u30c9\u30dc\u30c3\u30af\u30b9\u3067\u3042\u308b Windows \u5074\u3067 PowerShell ScriptBlock Logging \u304c\u6709\u52b9\u306b\u306a\u3063\u3066\u3044\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002\u3053\u3053\u3067\u306f Cuckoo 2.0.6 \u306b\u8ffd\u52a0\u3059\u308b\u5834\u5408\u306b\u3064\u3044\u3066\u8a18\u8f09\u3057\u3066\u3044\u307e\u3059\u3002 karttoon/curtaincuckoo: Curtain module for Cuckoo to deobfuscate PowerShell https://github.com/karttoon/curtai\u2026","version":"1.0","type":"rich","categories":["\ud83d\udd27\u89e3\u6790\u74b0\u5883\u69cb\u7bc9","\ud83d\udd27Cuckoo"],"width":"100%","blog_url":"https://soji256.hatenablog.jp/","blog_title":"setodaNote","image_url":"https://cdn.user.blog.st-hatena.com/default_entry_og_image/142804665/1534635173988912","author_name":"soji256","title":"Cuckoo \u306b\u96e3\u8aad\u5316 Poweshell \u89e3\u6790\u30e2\u30b8\u30e5\u30fc\u30eb CurtainCuckoo \u3092\u5c0e\u5165\u3059\u308b","provider_name":"Hatena Blog","published":"2019-06-03 19:37:23"}