Hello guys i want to ask how i can embed an encrypted payload created with veil-evasion to a pdf !
Forum Thread: How to Embed an Veil Encrypted Payload to a Pdf !
- Hot
- Active
-
Forum Thread: Removing Pay-as-You-Go Meter on Loan Phones. 1 Replies
1 wk ago -
Forum Thread: Install Metasploit Framework in Termux No Root Needed M-Wiz Tool 2 Replies
2 wks ago -
Forum Thread: Hydra Syntax Issue Stops After 16 Attempts 3 Replies
2 wks ago -
Forum Thread: How to Track Who Is Sms Bombing Me . 3 Replies
3 wks ago -
Forum Thread: moab5.Sh Error While Running Metasploit 17 Replies
1 mo ago -
Forum Thread: Execute Reverse PHP Shell with Metasploit 1 Replies
2 mo ago -
Forum Thread: Hack and Track People's Device Constantly Using TRAPE 35 Replies
3 mo ago -
Forum Thread: When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen. 8 Replies
4 mo ago -
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 12 Replies
5 mo ago -
Forum Thread: Hack Instagram Account Using BruteForce 208 Replies
5 mo ago -
Forum Thread: Metasploit reverse_tcp Handler Problem 47 Replies
7 mo ago -
Forum Thread: How to Train to Be an IT Security Professional (Ethical Hacker) 22 Replies
7 mo ago -
Metasploit Error: Handler Failed to Bind 41 Replies
7 mo ago -
Forum Thread: How to Hack Android Phone Using Same Wifi 21 Replies
8 mo ago -
How to: HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide] 177 Replies
8 mo ago -
How to: Crack Instagram Passwords Using Instainsane 36 Replies
8 mo ago -
Forum Thread: How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More 5 Replies
8 mo ago -
Forum Thread: How Many Hackers Have Played Watch_Dogs Game Before? 13 Replies
8 mo ago -
Forum Thread: How to Hack an Android Device with Only a Ip Adress 55 Replies
9 mo ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 10 Replies
9 mo ago
-
How To: Dox Anyone
-
Hack Like a Pro: How to Find Directories in Websites Using DirBuster
-
How To: Use Kismet to Watch Wi-Fi User Activity Through Walls
-
How To: Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To: Gain SSH Access to Servers by Brute-Forcing Credentials
-
How to Hack Wi-Fi: Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To: Enable Monitor Mode & Packet Injection on the Raspberry Pi
-
How To: Steal Usernames & Passwords Stored in Firefox on Windows 10 Using a USB Rubber Ducky
-
How To: Dump a MacOS User's Chrome Passwords with EvilOSX
-
How To: Find Identifying Information from a Phone Number Using OSINT Tools
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How To: Make Your Own Bad USB
-
How To: Use SQL Injection to Run OS Commands & Get a Shell
-
How To: Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
Steganography: How to Hide Secret Data Inside an Image or Audio File in Seconds
-
How To: Create & Obfuscate a Virus Inside of a Microsoft Word Document
-
How To: Hunt Down Social Media Accounts by Usernames with Sherlock
-
How To: Target Bluetooth Devices with Bettercap
-
How To: Set Up a Wi-Fi Spy Camera with an ESP32-CAM
-
How To: Use MDK3 for Advanced Wi-Fi Jamming
9 Responses
Probably you can't, But if you got a windows 7 machine lying somewhere you could Bind the payload and PDF using celesty binder or any other binder, and then change the icon of the generated file to a PDF icon to make it look legit.
This. There is no way that I know of to fake a file extension without exploiting a vulnerability so the best you can do is make it look like a PDF same an hope they fall for it.
Cheers,
Washu
Actually, on most operating systems, you are able to hide the actual extension of a file as well as change the logo, making it look and feel like a pdf. Prepare your file with a hidden extension but also a .pdf before that hidden extension and put it on a usb stick or send it to them through email.
Here are some links that should teach you how to hide extensions on different operating systems:
Windows
Mac
Be sure to also change the icon of the file so that it looks like a pdf:
Windows
Mac
Hope this helps you out!
-Cameron Glass
You wont be faking the file extension, you will just bind it with another file, so when the victim opens the file it also opens whatever file he binded it with, Also the extension is still .exe but most users don't have The extensions visible so by changing the Icon it will look exactly like a PDF or whatever
Yes he is correct. The extension is still there but the windows OS hides the first extension by default
Exaclty
Yes but when he will click to download the file he will probably see payload.pdf.exe on the description :/
True but if you send the file in a zip, he might still get fooled.
Cheers,
Washu
Yeah probably
Share Your Thoughts