Tag Archives: amsi

Weaponizing AMSI bypass with PowerShell

Introduction A while ago a colleague told me about an engagement in which he was running into a scenario where AMSI was unfortunately blocking his somewhat malicious PowerShell code. Due to several constrains it turned out that a lot of … Continue reading

Posted in Researching, Windows, Write-Up | Tagged , , , , , | Leave a comment