Skip to content

pracsec/AmsiScanner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits

src

src

 
 

.gitignore

.gitignore

 
 

LICENSE.md

LICENSE.md

 
 

README.md

README.md

 
 

Repository files navigation

AmsiScanner

Scan files with the Anti-Malware Scan Interface (AMSI) and minimize malicious text files and PowerShell scripts to see what the Antivirus is flagging as malicious.

Features:

  • Scan binary and text files with the installed AV to see if they are malicious.
  • Find the smallest subset of text that is still flagged as malicious by the installed AV.
  • Find the smallest subset of PowerShell tokens that are still flagged as malicious by the installed AV.
  • Encrypt files to mitigate accidental exection and detection by the installed AV.
  • Read files encrypted with this utility.

Dependencies

  • Windows 10+
  • .NET 6.0

Documentation

View documentation here: https://practicalsecurityanalytics.com/home/tools/amsiscanner/

About

A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

54 stars

Watchers

1 watching

Forks

12 forks
Report repository

Releases 5

Version 2.3.5 Latest
Oct 17, 2023
+ 4 releases

Packages

No packages published

Languages