All Services
Contact Us
- Contact Us
- Email Sign-Up
About Us
Free Resources
Training
- BHIS & Antisyphon Training
- WWHF Conference
Online Community
- Discord
- LinkedIn
- YouTube
- Bluesky
- Twitter/X
- Upcoming Events
Fun Stuff

Malicious Service

Attack Tool(s): SharpStay, SharPersist, StayKit, PsExec

SharpStay: https://github.com/0xthirteen/SharpStay
SharPersist: https://github.com/mandiant/SharPersist
StayKit: https://github.com/0xthirteen/StayKit
PsExec: https://learn.microsoft.com/en-us/sysinternals/downloads/psexec

Detection Link(s):

Endpoint Security Protection Analysis
Memory Analysis’
Endpoint Security
Security Information and Event Management (SIEM) Log Analysis

Helpful Blogs (BHIS):

“Digging Deeper: Vulnerable Windows Services” – https://www.blackhillsinfosec.com/digging-deeper-vulnerable-windows-services – Service persistence.

BNB_CARDS_v3_18

Back to top

Black Hills Information Security, Inc.

890 Lazelle Street, Sturgis, SD 57785-1611 | 701-484-BHIS (2447)
© 2008

About Us | BHIS Tribe of Companies | Privacy Policy | Contact

Links

Search the site