I got into a meterpreter session with my other computer. I wanted to create a persistence backdoor but it won't let me do it because of the AV. I therefore ran killav.rb but still the AV notices the backdoor that I'm trying to create. Does anyone know how to solve this problem?
Forum Thread: Metasploit Killing Anti-Virus
- Hot
- Active
-
Forum Thread:
Gaining Access into the Victim's Whatsapp on Android
12
Replies
1 hr ago -
Forum Thread:
Whatsapp Hack?
19
Replies
3 hrs ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
3 days ago -
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
3 wks ago -
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
3 wks ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
2 mo ago -
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
2 mo ago -
Metasploit Error:
Handler Failed to Bind
41
Replies
2 mo ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
3 mo ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
3 mo ago -
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
3 mo ago -
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
3 mo ago -
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
3 mo ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
4 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
4 mo ago -
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
5 mo ago -
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
6 mo ago -
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
6 mo ago -
Forum Thread:
How to Hack School Website
11
Replies
6 mo ago -
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
6 mo ago
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Dox Anyone
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Use Hash-Identifier to Determine Hash Types for Password Cracking
-
How To:
Perform Advanced Man-in-the-Middle Attacks with Xerosploit
-
How To:
Hack Wi-Fi & Networks More Easily with Lazy Script
-
How To:
Hack Networks & Devices Right from Your Wrist with the Wi-Fi Deauther Watch
-
How To:
Master Python, Django, Git & GitHub with This Bundle
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
Tutorial:
Create Wordlists with Crunch
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Scrape Target Email Addresses with TheHarvester
-
How To:
Top 10 Things to Do After Installing Kali Linux
11 Responses
You can try changing to a command shell and kill the AV from it. If you have escalated privileges.
I escalated privileges by running getprivs because getsystem didn't workout but when I use getuid it still says that I'm a user and not an admin or system. How can I solve this?
You wont kill AV that way
it will simply recreate a process as soon you kill one
let try a different way we gonna grant metasploit priv to overpass AV first lemme know what based system you using for syntax? is it Debian based?
the anti virus you trying to kill is it a linux or windows ?
I am using a Debian based system and I'm trying to kill the AV of Windows 7.
Does killing AV this way make it possible to create a temporary backdoor or should I do this another way?
A backdoor won't be much help in this case. Try a rootkit.
-The Joker
Why wouldn't it help?
A backdoor can be gone as soon as AV gets back. It can help, but requires more effort. Rootkits are more nasty.
-The Joker
Share Your Thoughts