@bOtM to For [Blue|Purple] Teams in Cyber Defence • 5 months agoScriptBlock Smuggling lets you spoof PowerShell security logs while inherently bypassing AMSI. This issue was disclosed to Microsoft but was closed with no further actionbc-security.orgmessage-square0arrow-up11arrow-down10file-textcross-posted to: netsechacking
arrow-up11arrow-down1external-linkScriptBlock Smuggling lets you spoof PowerShell security logs while inherently bypassing AMSI. This issue was disclosed to Microsoft but was closed with no further actionbc-security.org@bOtM to For [Blue|Purple] Teams in Cyber Defence • 5 months agomessage-square0file-textcross-posted to: netsechacking
