Hello guys Sodacni Here,
In a VM enviromnent I sucessfly bypassed AV with a c sharp exe in windows 8.1 x64 with veil-evasion, got a session, but the problem was when i wanted to make the backdoor persistent, i run the persistence msfconsole command says that installed everything ok, but in reality AV blocked some VBS files in the process, so on reboot i dont get a new connection. any ideas?
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
How To:
Brute-Force FTP Credentials & Get Server Access
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
Hacking Windows 10:
How to Dump NTLM Hashes & Crack Windows Passwords
How To:
Scrape Target Email Addresses with TheHarvester
How To:
Target Bluetooth Devices with Bettercap
How To:
Dox Anyone
How To:
Crack Shadow Hashes After Getting Root on a Linux System
Hack Like a Pro:
How to Find Directories in Websites Using DirBuster
BT Recon:
How to Snoop on Bluetooth Devices Using Kali Linux
How To:
Enumerate SMB with Enum4linux & Smbclient
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
How To:
Use SQL Injection to Run OS Commands & Get a Shell
How To:
Find Passwords in Exposed Log Files with Google Dorks
How To:
Create a Persistent Back Door in Android Using Kali Linux:
How To:
Run USB Rubber Ducky Scripts on a Super Inexpensive Digispark Board
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
How To:
Scan for Vulnerabilities on Any Website Using Nikto
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
2 Responses
You could try working with the registry yourself. The startup folder is an option in Windows too, but it'll be quite obvious if your target chances to look there.
Quite a few, yes. The integrated meterpreter persistence script is pretty unused since it delivers a bare payload (no encryption, no obfuscation) and hence is detected immediately. Try using exploit/windows/local/persistence and setting the advanced option EXE::Custom to a payload that you are sure about (encoded, undetectable). This way it will modify the registry just as the script does, however it will point to a payload that is much less detectable. -Ne py
Share Your Thoughts