When the AMSI Scanner task is running, Kaspersky Industrial CyberSecurity for Nodes controls the execution of scripts created using Microsoft Windows scripting technologies (Active Scripting) such as VBScript or JScript. The application can also process PowerShell scripts and scripts run in the Microsoft Office applications on operating systems with the Antimalware Scan Interface (AMSI) installed.
AMSI allows applications and services to integrate with any antimalware application installed on a device in order for all the executed scripts to be intercepted and scanned by the antimalware. You can find more information about AMSI functionality on the Microsoft website.
In component settings, you can allow or deny the running of dangerous scripts. If Kaspersky Industrial CyberSecurity for Nodes identifies a script as dangerous, it blocks or allows execution of the script according to your selected action. If you select the Block action, the application blocks dangerous scripts and allows other scripts.
Kaspersky Industrial CyberSecurity for Nodes supports the AMSI technology in Microsoft Windows 10 and Microsoft Windows Server 2016 and later.