I'm looking for ways to block the use of the -extract parameter when running an executable created with ps2exe. I know it might seem risky to some, but I'm willing to take that chance in certain circumstances. Any suggestions on how to approach this?
1 Answer
Honestly, if you're using ps2exe to obfuscate your code, you might want to reconsider that approach. If you need a proper executable, consider using a compiled language instead. With Powershell auditing enabled, anyone can extract the original script from the event logs, so it doesn't offer as much protection as you think.
Good point, looks like that’s my answer!