API Reference
Class
ScriptAnalysisService
Heuristic analyzer for GPO script command lines and files. Scores and surfaces indicators such as encoded payloads, suspicious hosts, LOLBIN usage, persistence hints, and credential dumping keywords. Uses safe heuristics only.
Inheritance
- Object
- ScriptAnalysisService
Methods
public static ScriptAnalysisResult AnalyzeCommandLine(String commandLine) #Returns:
ScriptAnalysisResultAnalyzes a single script command line and returns a heuristic result.
Parameters
- commandLine System.String
- Command line text.
Returns
Analysis result with severity, score, indicators, and optional decoded snippet.
public static ScriptAnalysisResult AnalyzeFile(String path) #Returns:
ScriptAnalysisResultAnalyzes a script file on disk using the command-line heuristics on its content.
Parameters
- path System.String
- Path to the script file.
Returns
Analysis result with severity and findings.