AMSITrigger - The Hunt For Malicious Strings
Usage:
AMSI calls (xmas tree mode) -d, --debug Show Debug Info -m, --maxsiglength=VALUE Maximum signature Length to cater for, default=2048 -c, --chunksize=VALUE Chunk size to send to AMSIScanBuffer, default=4096 -h, -?, --help Show Help ">
-i, --inputfile=VALUE Powershell filename-u, --url=VALUE URL eg. https://10.1.1.1/Invoke-NinjaCopy.ps1-f, --format=VALUE Output Format: 1 - Only show Triggers 2 - Show Triggers with Line numbers 3 - Show Triggers inline with code 4 - Show AMSI calls (xmas tree mode)-d, --debug Show Debug Info-m, --maxsiglength=VALUE Maximum signature Length to cater for, default=2048-c, --chunksize=VALUE Chunk size to send to AMSIScanBuffer, default=4096-h, -?, --help Show HelpFor details see https://www.rythmstick.net/posts/amsitrigger
Via: feedproxy.google.com
AMSITrigger - The Hunt For Malicious Strings
Reviewed by Anónimo
on
17:36
Rating:
Reviewed by Anónimo
on
17:36
Rating:
