avatar

XPN

Adam Chester

Hacker and Infosec Researcher

About Me

XPN InfoSec Blog

Exploring PowerShell AMSI and Logging Evasion

Posted on 2018-07-09 Tagged in redteam, windows, amsi

By now, many of us know that during an engagement, AMSI (Antimalware Scripting Interface) can be used to trip up PowerShell scripts in an operators arsenal. Attempt to IEX Invoke-Mimikatz without taking care of AMSI, and it could be game over for your undetected campaign.... Read More ยป