How can imbed a (veil-evasion) payload in a working pdf or image file ? so when the pdf/image opens, the payload executes ?
- Hot
- Active
-
Forum Thread:
How to Track Who Is Sms Bombing Me .
4
Replies
1 mo ago -
Forum Thread:
Removing Pay-as-You-Go Meter on Loan Phones.
1
Replies
2 mo ago -
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
3
Replies
2 mo ago -
Forum Thread:
moab5.Sh Error While Running Metasploit
17
Replies
3 mo ago -
Forum Thread:
Execute Reverse PHP Shell with Metasploit
1
Replies
4 mo ago -
Forum Thread:
Install Metasploit Framework in Termux No Root Needed M-Wiz Tool
1
Replies
5 mo ago -
Forum Thread:
Hack and Track People's Device Constantly Using TRAPE
35
Replies
5 mo ago -
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
6 mo ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
6 mo ago -
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
7 mo ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
9 mo ago -
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
9 mo ago -
Metasploit Error:
Handler Failed to Bind
41
Replies
9 mo ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
9 mo ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
9 mo ago -
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
9 mo ago -
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
10 mo ago -
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
10 mo ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
11 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
11 mo ago
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Spy on Traffic from a Smartphone with Wireshark
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
This Top-Rated Course Will Make You a Linux Master
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Use Kismet to Watch Wi-Fi User Activity Through Walls
-
Hack Like a Pro:
How to Find Directories in Websites Using DirBuster
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Exploit EternalBlue on Windows Server with Metasploit
-
How To:
Stealthfully Sniff Wi-Fi Activity Without Connecting to a Target Router
-
Locking Down Linux:
Using Ubuntu as Your Primary OS, Part 3 (Application Hardening & Sandboxing)
-
Hack Like a Pro:
Abusing DNS for Reconnaissance
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How to Hack Wi-Fi:
Cracking WEP Passwords with Aircrack-Ng
-
How To:
Intercept Images from a Security Camera Using Wireshark
-
How To:
Use Hash-Identifier to Determine Hash Types for Password Cracking
16 Responses
How can I imbed*
Isnt it embed haha??
oh srry, yeah embed..
but nvm, it's detected now, the veil-evasion is useless now :'(
another ways ?!
try this powershell attack using a word document...works like charm and is not detected by AVAST when executed (that's what i have on my machine and it's a powerful AV)
Thank you :D
hi, does it work even with android office files opener? therefore the os won't be windows but android itself. thanks
Try a different type of exploit... or change the language payload is written in..
You mean the aecencrypt ? which exploit ?!!
Also how to change the language ?!
What I mean is.. try a different exploit except pdf.. just give it a pdf icon or something...
There is a tut on how to change language..
I didnt change it to pdf, I just used the handler and the payload output, and AVAST caught it!
Can you link me to that "change languahe" tutorial ? I cant find it!
Theres a guide for it in listeners section.. check it out!!
Can you link me to it please ?
You mean this one:
https://null-byte.wonderhowto.com/how-to/hack-like-pro-embed-backdoor-connection-innocent-looking-pdf-0140942/
?
it seems to be working for a specific payload or exploit! (correct me if i'm wrong)
personally, i use 3 methods:
1) bind the veil payload to a valid pdf file using winrar SFX, and add a pdf icon of course
2) I make a veil payload and change its icon to any file type i like, pdf, doc, docx or jpg, using icoFX... it may look suspicious when the victim clicks on it and nothing happens, but to make it less suspicious, i send it to the victim among other clean files (black sheep in a white herd)
3) use the adobe_pdf_embedded_exe in metasploit and specify my own exe file using the command: set EXENAME /root/veilpayload.exe (doesn't work with all versions of pdf)
hi, could you start up a thread within here concerned? thanks
Share Your Thoughts