Command and Scripting Interpreter: Python (Windows)


Adversaries may abuse Python commands and scripts for execution. Python is a very popular scripting/programming language, with capabilities to perform many functions. Python can be executed interactively from the command-line (via the python.exe interpreter) or via scripts (.py) that can be written and distributed to different systems. Python code can also be compiled into binary executables.

Products, Sensors, and Dependencies

ProductDependenciesData sourceAccess requiredProtocolData CollectedNotes
Tenable Vulnerability ManagementAdvanced Network ScanWindows machinesAuthenticated ScanSMBMicrosoft Windows Installed Software EnumerationPlugin ID: 20811


Microsoft Windows Installed Software Enumeration

Attack Path Technique Details

Framework: MITRE ATT&CK

Family: Execution

Sub-Technique: Python

Platform: Windows

Tenable Release Date: 2022 Q2