SamSepi46 Posted February 8, 2022 Share Posted February 8, 2022 Does anyone have any suggestions on how to get a ncat executable file to bypass windows defender? Thanks! Quote Link to comment Share on other sites More sharing options...
dark_pyrro Posted February 8, 2022 Share Posted February 8, 2022 Obfuscate it in some way? Or, use PowerShell instead to establish the reverse shell on the target side. It's probably more likely to go under the radar even though it produces "noise". Quote Link to comment Share on other sites More sharing options...
SamSepi46 Posted February 8, 2022 Author Share Posted February 8, 2022 I tried obfuscating the script that triggers the exe, but it doesn't obfuscate the executable itself. Is there a way to obfuscate .exe like that? remote PowerShell session is a great idea. I'm more than likely going to just do that instead. Thanks 🙂 Quote Link to comment Share on other sites More sharing options...
dark_pyrro Posted February 8, 2022 Share Posted February 8, 2022 Check the site below. It does the job for you. For example, select "PowerShell #3" and use that PS code on the target. Then start a listener (or start the listener first) using netcat (like: netcat -lvnp <port number> on a Linux box). https://www.revshells.com/ Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.