SamSepi46 Posted February 8, 2022 Share Posted February 8, 2022 Does anyone have any suggestions on how to get a ncat executable file to bypass windows defender? Thanks! Link to comment Share on other sites More sharing options...
dark_pyrro Posted February 8, 2022 Share Posted February 8, 2022 Obfuscate it in some way? Or, use PowerShell instead to establish the reverse shell on the target side. It's probably more likely to go under the radar even though it produces "noise". Link to comment Share on other sites More sharing options...
SamSepi46 Posted February 8, 2022 Author Share Posted February 8, 2022 I tried obfuscating the script that triggers the exe, but it doesn't obfuscate the executable itself. Is there a way to obfuscate .exe like that? remote PowerShell session is a great idea. I'm more than likely going to just do that instead. Thanks 🙂 Link to comment Share on other sites More sharing options...
dark_pyrro Posted February 8, 2022 Share Posted February 8, 2022 Check the site below. It does the job for you. For example, select "PowerShell #3" and use that PS code on the target. Then start a listener (or start the listener first) using netcat (like: netcat -lvnp <port number> on a Linux box). https://www.revshells.com/ Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.