3. How Safe Are Your Strings? (Get-PowerShellBlog /u/markekraus)

How Safe Are Your Strings? (Get-PowerShellBlog /u/markekraus)

I'm not 100% on the effectiveness of this, but I implemented an extension method to SecureString based on the solution in this article.

$TypeDefinition = @"
using System;
using System.Runtime.InteropServices;
using System.Security;

public static class ExtensionMethods
{
    public static string ConvertToUnsecureString(this SecureString securePassword)
    {
        if (securePassword == null)
            throw new ArgumentNullException("securePassword");

        IntPtr unmanagedString = IntPtr.Zero;

        try
        {
            unmanagedString = Marshal.SecureStringToGlobalAllocUnicode(securePassword);
            return Marshal.PtrToStringUni(unmanagedString);
        }
        finally
        {
            Marshal.ZeroFreeGlobalAllocUnicode(unmanagedString);
        }
    }
}
"@

$TypeParams = @{
    MemberName = 'ConvertToUnsecureString'
    MemberType = 'ScriptMethod'
    TypeName   = 'System.Security.SecureString'
    Value      = {
        [ExtensionMethods]::ConvertToUnsecureString($this)
    }
}

Add-Type -CompilerParameters $CompilerParams -TypeDefinition $TypeDefinition
Update-TypeData @TypeParams

SecureStringToGlobalAllocUnicode copies a SecureString into unmanaged memory, and PtrToStringUni holds a copy of that unmanaged string until the pointer to it is freed by ZeroFreeGlobalAllocUnicode.

It seems relatively secure, but I'm curious what someone more versed in C# thinks.

/r/PowerShell Thread Link - get-powershellblog.blogspot.com
Previous
Next

Recently removed from /r/PowerShell

Why can't I return an empty array from a function? What have you done with PowerShell this month? Is there a way to write a script that could compile a list of known advertisers on reddit, and then add those people to your block list? New to PS - MS-Graph Help Try-Catch Exception error makes no sense. No real line # Trying to make a script that disables a service at all network computers power settings Offboarding security group exclusion? Check the Administrator account on all devices (LAPS) How to run a powershell with parameters using a Batch file(or run it via Task Scheduler) Need Powershell Regex Help - Replace bound string within string PS 7 GUI Backcolor help Any one know how to pass OAuth Token and UPN name in PSCredential Object. Display Directory Path in PowerShell Win Form Need some help with getting metrics from ESXi host, script included, need modifications

More Random Comments

Weekly "I'm new to meds!" Thread New and Reworked champs need to be balanced instead of OP every time Post sa r/all. Mislite li da je ovo iznimka ili da većina roditelja slično reagira na "mješanu" vezu? HACKING SPACE ON SCHOOLS The Whitewash of Kid Cudi Other show recs What is Teemo's meta build now and why does full ap teemo feel so weak. Don't buy From Warehouse Deals-Amazon Can someone with case knowledge answer my questions? Thanks! Daily Discussion Intimacy starters at home Why all the deliberate instigation? Elon Musk ridiculed for saying ‘almost anyone’ could afford $100k SpaceX ticket to Mars Homemade Wheel tips Pitch your idea for a tmnt flick