Looking for advice on getting meterpreter passed antivirus on windows. My plan is to put it on a bad usb stick and hopefully just run the payload in ram, without having to store it on the hard drive.
My concern is that meterpreter is so mainstream antivirus would have to be braindead not to pick it up.
I just have a fondness for the shell I guess.
learn 2 code and not to be a script kiddie
Then explain what to learn, I am not OP but it seems redundant to just say "learn 2 code" without actually providing more as in what language.
c++ would be a good start...
Use a Base64 encoded Powershell meterpreter.
I can't be assed to disassemble my rubber ducky, so this is from memory:
META-r
cmd.exe
powershell.exe -e
Takes about 2 minutes to complete.
AV does not pick up on that in my experience, probably because it's never saved on disk.
Explain to your customer that automatic screenlock is important. Some usb device control software ("Endpoint security") is also somewhat effective.
Why would I take the time to write a new shell when meterpreter already exists? All of its traffic encrypted, can run in memory without ever leaving a trace...
I bet you coded your own OS and browser and and text editor and drivers for all your hardware. Or are you just a script kiddie? Didn't even manufacture your own hardware? GTFO
Yeah this seems to be the option that come up the most. Thank you.
what you are doing is highly illegal
...
>meterpreter is so mainstream
Yes, it's mainly used as a learning tool for beginners. Once you get some experience under your belt, you should be able to look at the script it uses and make a variant of your own. Metasploit is only a skiddie tool in the hands of skids. It is really intended to be a framework for your OWN scripts and modules. Basically, you're using it in demo mode.
and that ass backwards thinking is what will keep you always behind a wall thinking you are cool but you will never more than just a script kiddie. And to be honest not the smartest of the bunch. Asshat.
...
The difference is is that I understand how those things work on low level.
You don't understand what that program actually does or how it accomplishes its goal or why antiviruses detect it as a threat. You just run it and assume it works. IE you're a script kiddie
this
/thread and fuck you op
The thing is I do understand how meterpreter works at a lower level and how it uses the api calls and DLLs.. But that doesnt mean I want to spend a long ass time creating something that already exists when I can just find a way to get past antivirus with it.
WTF the point in that
Besides I like the shell. I also like bash.. are all users script kiddies for not writing their own shell to use instead of bash?
>192.168.0.107
DDoSing OP's toaster as we speak...
lol thats not even my private ip
>I just have a fondness for the shell I guess.
what did he mean by this?
try 10.40.6.154
it is unbelievably easy to create an exe that will not be picked up by a/v that can have a meterpreter shell
its harder to inject into things like office macros and pdfs
it's a dumb question because you're too dumb to change/obfuscate (or too dumb to even realize)the payload.
you're pretty dumb OP
do you post about being a leet hacker on facebook?
See this is exactly what I'm asking how to do. I've never tried to obfuscate payload to get it past antivirus.
You guys talking like im trying to bring down the pentagon and I'm just trying to learn and have a good time on computers I own.
I'm fine with being dumb for not knowing how to do things I've never done before though,
Its a dumb question because rudimentary knowledge would give you at least enough knowledge on where to start.
You just want to be spoonfed so you can seem to be "le epic hackerman"
When people don't even know the answers just join threads to call people dumbasses.
I bet you make Neo look like skidie don't you mr l33t h@xxor man
Everyone bow before Anons hacking skills, he has backdoors into every computer system in the world and could wreck your face at any time skiddies
...
What an unsightful thread
What do you mean? There so many l33t haxxors in here. You just aren't smart enough to comprehend them.
...
Could you retype your post so that the non-word "meterpreter" is not used? Perhaps use only words in a physical dictionary?
>le epic hacker xD
>can't even obfuscate a payload
Fuck off skid.
mfw it is