| 1 | 1 | | # PowerShdll |
| 2 | 2 | | Run PowerShell with dlls only. |
| | 3 | + | |
| 3 | 4 | | Does not require access to powershell.exe as it uses powershell automation dlls. |
| | 5 | + | |
| | 6 | + | PowerShdll can be run with: rundll32, InstallUtil.exe, regsvcs.exe, regasm.exe, regasm.exe. |
| 4 | 7 | | |
| 5 | 8 | | ## dll mode: |
| 6 | 9 | | |
| | 10 | + | ### Rundll32: |
| 7 | 11 | | ``` |
| 8 | 12 | | Usage: |
| 9 | 13 | | rundll32 PowerShdll,main <script> |
| skipped 1 lines |
| 11 | 15 | | rundll32 PowerShdll,main -w Start an interactive console in a new window |
| 12 | 16 | | rundll32 PowerShdll,main -i Start an interactive console in this console |
| 13 | 17 | | If you do not have an interractive console, use -n to avoid crashes on output |
| | 18 | + | ``` |
| | 19 | + | ### Alternatives (Credit to SubTee for these techniques): |
| | 20 | + | |
| | 21 | + | ``` |
| | 22 | + | 1. |
| | 23 | + | x86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe /logfile= /LogToConsole=false /U PowerShdll.dll |
| | 24 | + | x64 - C:\Windows\Microsoft.NET\Framework64\v4.0.3031964\InstallUtil.exe /logfile= /LogToConsole=false /U PowerShdll.dll |
| | 25 | + | 2. |
| | 26 | + | x86 C:\Windows\Microsoft.NET\Framework\v4.0.30319\regsvcs.exe PowerShdll.dll |
| | 27 | + | x64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\regsvcs.exe PowerShdll.dll |
| | 28 | + | 3. |
| | 29 | + | x86 C:\Windows\Microsoft.NET\Framework\v4.0.30319\regasm.exe /U PowerShdll.dll |
| | 30 | + | x64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\regasm.exe /U PowerShdll.dll |
| | 31 | + | 4. |
| | 32 | + | regsvr32 /s /u PowerShdll.dll -->Calls DllUnregisterServer |
| | 33 | + | regsvr32 /s PowerShdll.dll --> Calls DllRegisterServer |
| 14 | 34 | | ``` |
| 15 | 35 | | |
| 16 | 36 | | ## exe mode |
| skipped 31 lines |
