Search:

Type: Posts; User: LHYX1; Keyword(s):

Page 1 of 6 1 2 3 4

Search: Search took 0.00 seconds.

  1. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    1)I tested the method of connecting to 127.0.0.1:445 to check that your malware is running in a sandbox or not and it worked on avira and some other av's. Altough it doesn't bypass all of them. I...
  2. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    You right part 2 isn't really useful in a pentest. I don't do this as a job. It's just a hobby so I didn't really think about that.

    As for your error, did you set execution permission for...
  3. Discussioni: SET not Cloning sites

    by LHYX1
    Replies
    4
    Views
    3,710

    Re: SET not Cloning sites

    Looks like the server can't find some files. Could you post the exact staps you took ?
  4. Replies
    7
    Views
    3,273

    Re: How to get rid from startx command in backtrack5R2 ?

    Are you really this lazy ? type 6 letters come on :p
    And if you need to check something quickly, it's easy to just use the terminal and don't wait for the gui to load
  5. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    Here's a video that demonstrates how to use the script :p http://www.securitytube.net/video/4223 (I did not make the video)

    I'm working to make it FUD again, I'll post when I'm done.
    I'm a little...
  6. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    I think this is just signature based detection.
    When I'm feeling like it, I'll change the C file a little and then it will be FUD again :p
    Maybe I could also implement a stronger form of encryption...
  7. Replies
    15
    Views
    5,906

    Re: Need help With UEFI Installation of BT5 KDE

    /cdrom does not exist. "/dev/sr0" is your cdrom/dvd drive.
    But I thought you were booting from USB ?
    In that case you need to find out the name of your thumbdrive with "fdisk -l".
  8. Replies
    3
    Views
    1,864

    Re: Intallation stuck at "Choose a Keyboard Layout"

    when something goes wrong when you download your iso, your iso get's corrupted and the md5 sum of the iso changes.
    Download a program like this: http://www.winmd5.com/ to check the md5 sum.
    And...
  9. Discussioni: Dual Wifi cards

    by LHYX1
    Replies
    2
    Views
    2,635

    Re: Dual Wifi cards

    If you had searched the forums, you would have found some threads about how to set up a fake AP and you would have found a thread about the Alfa AWUS051NH. And yes it works out of the box.
    ...
  10. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    I'll look into it.
  11. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @Cooker The junk a and b are getting used here:



    code = open_structure % (junkA,outArray,junkB,key,length,devide)
    b.write(code)

    They are inserted into a byte array in structure.c:
  12. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @jnpa123 Comodo firewall blocks everything unless you add an exception (which I find very annoying) and I think avast sandboxes everything that doesn't have a nice software signature (Comodo...
  13. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @zimmaro thanx for testing the script with nod32 v5 version 5.2.9.1
    I din't test anything yet. You were quicker :D

    @killtrace I think you did something wrong mate :p
  14. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    Can you be a little more specific ? Screenshot maybe ?
    Does it really flag it as a trojan or something or is it a behavior monitoring thing ?
    It had to be detected sooner or later I guess. I'll...
  15. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    Did you "chmod 755 crypter.py" ??
  16. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @jnpa123 did not know that.
    thanx for the info :)
  17. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @npavlidis I don't have Windows 2008 or Windows 2003 so I cant test anything.
    I suppose the metasploit payloads work if you don't encode them with my script on these systems ?

    This might have...
  18. Discussioni: Help with Reaver

    by LHYX1
    Replies
    18
    Views
    42,306

    Re: Help with Reaver

    associate with aireplay-ng :


    aireplay-ng 1 0 -a [mac ap] -h [your mac] [interface]
  19. Replies
    7
    Views
    1,915

    Re: Where is SET saving its cloned/imported sites to?

    Your applet needs to be signed in order to write to the client machine and
    the java applet of set writes an exe file to the client machine so you need a certificate :p
    You can read trough the...
  20. Replies
    7
    Views
    1,915

    Re: Where is SET saving its cloned/imported sites to?

    @Maris I think this is impossible unless you buy a real certificate.
    proof: http://www.sslshopper.com/java-code-signing-certificates.html
    Home made certificates will always have Unknown as...
  21. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @samiux you can add a description and all that stuff to the binded exe file with resource hacker like I said in one of my previous posts.
    And btw did you try to use iexpress already ?
    If you still...
  22. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @Samiux You could use an exe binder or
    you can use the program iexpress that comes with windows.
  23. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @L21ZIFER
    This pdf exploit only works on a specific version of adobe acrobat reader. select the exploit in metasploit and do a show targets to confirm.
    I stumbled upon this a couple of days ago:...
  24. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @L21ZIFER I should have mentioned it but if you download the script now you'll get the new version :p

    @samiux msfencode can't bind exes. It can only inject one of the metasploit payloads into an...
  25. Discussioni: [script] for AV evasion

    by LHYX1
    Replies
    113
    Views
    52,492

    Re: [script] for AV evasion

    @L21ZIFER I edited my script and added the option to create an evil pdf.
    It's a little bit different then how you did it. Now you can use all the payloads to create an evil pdf and not just...
Results 1 to 25 of 128
Page 1 of 6 1 2 3 4