This Threat Thursday session will cover our new threat emulation plan for hijacking PowerShell profiles to gain persistence. This threat emulates a threat actor abusing a common PowerShell persistence mechanism by creating a script at `$profile`, which ensures commands are loaded every time PowerShell is launched interactively to execute a payload.