SamSepi46 Posted February 8, 2022 Posted February 8, 2022 Does anyone have any suggestions on how to get a ncat executable file to bypass windows defender? Thanks!
dark_pyrro Posted February 8, 2022 Posted February 8, 2022 Obfuscate it in some way? Or, use PowerShell instead to establish the reverse shell on the target side. It's probably more likely to go under the radar even though it produces "noise".
SamSepi46 Posted February 8, 2022 Author Posted February 8, 2022 I tried obfuscating the script that triggers the exe, but it doesn't obfuscate the executable itself. Is there a way to obfuscate .exe like that? remote PowerShell session is a great idea. I'm more than likely going to just do that instead. Thanks 🙂Â
dark_pyrro Posted February 8, 2022 Posted February 8, 2022 Check the site below. It does the job for you. For example, select "PowerShell #3" and use that PS code on the target. Then start a listener (or start the listener first) using netcat (like: netcat -lvnp <port number> on a Linux box). https://www.revshells.com/
Recommended Posts
Archived
This topic is now archived and is closed to further replies.