idavis/gist:c16f117c0f99eb20c49f

Created June 12, 2015 16:46

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/idavis/c16f117c0f99eb20c49f.js"></script>
Save idavis/c16f117c0f99eb20c49f to your computer and use it in GitHub Desktop.

Download ZIP

PowerShell Module Security

Raw

gistfile1.md

I was playing around with dynamic module creation and figured out how to monkey patch modules.

I then thought about how PowerShell is a Last-In-Wins language, and tried replacing private methods.

This led to the "what if" moment of pulling secure data out of a loaded module. In this case, the username and password of a credential set.

This seems like a security issue to me, or am I being over sensitive?

ferventcoder commented Jun 12, 2015

This seems like a bit of a security issue.

ferventcoder commented Jun 22, 2015

This seems similar to how we discovered Mocking with Chocolatey - https://github.com/chocolatey/chocolatey/tree/fcc68ba881a52984c187390c7c9de66a787505e9/tests

ferventcoder commented Jun 22, 2015

Recently I learned you don't even need to overwrite the function, just create an alias with the same name and it doesn't matter what your function is named. If the user is just calling it, without a local scope, it will call your alias instead. https://technet.microsoft.com/en-us/library/hh848304.aspx

Windows PowerShell uses the following
precedence order when it runs commands:

1. Alias
2. Function
3. Cmdlet 
4. Native Windows commands

Update: May only work for the exported functions, not the private ones.