Skip to content
/ Amsi-Patch Public

I got bored and there was a request to create an amsi patch and so I did. this is not yet detected but will probably get detected in the near future.

License

View license
4 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

MpCmdRun/Amsi-Patch

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

7 Commits
AmsiScan
AmsiScan
Β 
Β 
AmsiScan.sln
AmsiScan.sln
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 

Repository files navigation

Amsi-Patcher

πŸš€ A Example of how to temporarily patch AMSI on Runtime

Features

  • πŸ›‘οΈ Returns AMSI To always be disabled so WD basically gives up
  • πŸ“¦ Patches AmsiScanBuffer Windows 10 & 11
  • πŸͺ„ Logs all Errors or Outputs to the Console

⚠️ Warning

This code is intended for educational and research purposes only.

πŸ› οΈ Build

  • Visual Studio 2022+
  • .NET Framework 4.8
  • Release x64 mode highly recommended.

πŸ“š References

πŸ“· Runtime Results (Kleenscan)

image

  • Surprisingly Bypassed ESET, ThreatDown EDR and many more (I was expecting only defender to be bypassed)

πŸ“œ License

MIT License (see LICENSE)

About

I got bored and there was a request to create an amsi patch and so I did. this is not yet detected but will probably get detected in the near future.

Resources

Readme

License

View license
Activity

Stars

4 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages