Skip to content
/ psai Public

A tool to automatically modify PowerShell Scripts with AI to bypass AMSI / EDR

3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

emlinhax/psai

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

29 Commits
screenshots
screenshots
 
 
.env
.env
 
 
Pipfile
Pipfile
 
 
Pipfile.lock
Pipfile.lock
 
 
README.md
README.md
 
 
manual.md
manual.md
 
 
psai-gemini.py
psai-gemini.py
 
 
psai-gpt.py
psai-gpt.py
 
 

Repository files navigation

PSAI

A tool that uses AI to automatically generate PowerShell Samples that will bypass AMSI.
This will only bypass static analysis and scanners. Dynamic Analysis is obviously still possible.
The scripts generated by the AI will almost always be a little different.

The techniques used by the AI are based on the PowerShell Bible.
This tool will later be expanded with a GUI and AMSITrigger integration.
If you want to add your own techniques, just modify the "manual.md".

Usage:

python3 psai-xxx.py script.ps1 (output.ps1)

Screenshots

Comparison:

Original (revshells.com) Obfuscated

VirusTotal:

Original (revshells.com) Obfuscated


Note:
Scripts generated by this tool will normally be in a one-line / minified format.
I beautified them for the screenshots and readability.

About

A tool to automatically modify PowerShell Scripts with AI to bypass AMSI / EDR

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages