Page 10 of 12 FirstFirst ... 89101112 LastLast
Results 91 to 100 of 114

Thread: [script] for AV evasion

  1. #91
    Just burned his ISO
    Join Date
    Jun 2012
    Posts
    5

    Default Re: [script] for AV evasion

    Quote Originally Posted by zimmaro View Post
    hi,xiaobu ((OUT OF THREAD sorry-lhyx1!!!))
    try this method vs a "your list" av's worked :
    http://www.backtrack-linux.org/forum...ad.php?t=48283
    bye
    Doesn't work, at list with bitdefender.

  2. #92
    Good friend of the forums zimmaro's Avatar
    Join Date
    Mar 2010
    Location
    milano
    Posts
    407

  3. #93
    Just burned his ISO
    Join Date
    Jun 2012
    Posts
    5

    Default Re: [script] for AV evasion

    Well, unfortunately in a "real system" it doesn't work (it finds Trojan.Heu@Something). I'll post screen-shoots ASAP

  4. #94
    Good friend of the forums zimmaro's Avatar
    Join Date
    Mar 2010
    Location
    milano
    Posts
    407

    Default Re: [script] for AV evasion

    Quote Originally Posted by saxsos View Post
    Well, unfortunately in a "real system" it doesn't work (it finds Trojan.Heu@Something). I'll post screen-shoots ASAP
    hi,saxos
    the photos were only related to scanning "NoVirusThanks" & i'm testing with others AVS (my)worked!!
    Today I tried to install BitDefender (very heavy) ... & you were right! is detected!
    bye

  5. #95
    Just burned his ISO
    Join Date
    Aug 2011
    Posts
    1

    Unhappy Re: [script] for AV evasion

    Dudes as u all suggested to someone..
    i did a lot of background work on metasploit etc..
    watched many videos etc..
    but i seriously was not able to figure out how to use it..
    pls help me a post on how to use this script wid SET and METASPLOIT will harldy trouble u guys but it would b really gr8 for me..
    Thanx in advance..

  6. #96
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: [script] for AV evasion

    Here's a video that demonstrates how to use the script http://www.securitytube.net/video/4223 (I did not make the video)

    I'm working to make it FUD again, I'll post when I'm done.
    I'm a little busy a the moment so it will take some time.
    Last edited by LHYX1; 07-02-2012 at 10:58 AM.
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  7. #97
    Moderated Member
    Join Date
    Oct 2011
    Posts
    44

    Default Re: [script] for AV evasion

    Quote Originally Posted by LHYX1 View Post
    Here's a video that demonstrates how to use the script http://www.securitytube.net/video/4223 (I did not make the video)

    I'm working to make it FUD again, I'll post when I'm done.
    I'm a little busy a the moment so it will take some time.
    Please let me know if you need any help, I am always grateful to those who contribute for others.

  8. #98
    Senior Member ShadowMaster's Avatar
    Join Date
    Jul 2011
    Location
    /root
    Posts
    189

    Default Re: [script] for AV evasion

    First off, great script. (BTW if anyone here has any perl coding skills, I'm writing an ASM ghostwriting automation tool in perl. Any help would be appreciated. that should help to make FUD paylaods.)
    Second off I get this errror on part two. Also, I'm not entirely sure how to integrate part two into a pentest. All this does is set up the site and java so that when a user browses to my ip from a spoofed DNS response he will be pwned?

    [*] Stripping out the debugging symbols...[*] Moving trojan horse to web root...
    **************************************
    1) apache server
    2) java applet attack
    3) create evil PDF
    **************************************
    Select an attack (1-n):2
    Traceback (most recent call last):
    File "./crypter.py", line 137, in <module>
    subprocess.Popen(args=["gnome-terminal", "--command=sh /opt/metasploit/msf3/javaAttack.sh"]).pid
    File "/usr/lib/python2.6/subprocess.py", line 633, in __init__
    errread, errwrite)
    File "/usr/lib/python2.6/subprocess.py", line 1139, in _execute_child
    raise child_exception
    OSError: [Errno 2] No such file or director


    I've been getting this output and trying to debug, but so far I have no idea whatt's causing it. Do you?
    World Domination is such an ugly phrase. I prefer the term World Optimization.

  9. #99
    Member
    Join Date
    Jan 2010
    Posts
    54

    Default Re: [script] for AV evasion

    I am getting an error, i followed the video posted in an earlier post and have installed mingw32 using command @apt-get install mingw32.

    when i try to execute the crypter i get the following error...

    Code:
    root@bt:/opt/metasploit/msf3# ./crypter.py
    bash: ./crypter.py: /usr/bin/python^M: bad interpreter: No such file or directory
    any ideas why?

    I read i should change it from mdos to unix but the video did not do this, need a fix asap please
    Last edited by deviney; 07-10-2012 at 01:54 PM.

  10. #100
    Senior Member ShadowMaster's Avatar
    Join Date
    Jul 2011
    Location
    /root
    Posts
    189

    Default Re: [script] for AV evasion

    Open a new term
    Type "dos2unix crypter.py && dos2unix javaAttack.sh" in /opt/metasploit/msf3/
    and you're done.
    World Domination is such an ugly phrase. I prefer the term World Optimization.

Page 10 of 12 FirstFirst ... 89101112 LastLast

Similar Threads

  1. Script for simple AV evasion (tested on AVG, Avast, Emisoft)
    By LHYX1 in forum BackTrack 5 General Topics
    Replies: 16
    Last Post: 05-01-2012, 09:26 PM
  2. Script for simple AV evasion (tested on AVG, Avast, Emisoft)
    By LHYX1 in forum BackTrack 5 Beginners Section
    Replies: 1
    Last Post: 07-16-2011, 02:16 PM
  3. Snort Signature Evasion with Metasploit
    By T0XIC in forum BackTrack 5 Videos
    Replies: 6
    Last Post: 07-01-2011, 12:21 PM
  4. Advanced antivirus evasion techniques
    By AzraelSepultura in forum Beginners Forum
    Replies: 4
    Last Post: 03-01-2011, 06:57 AM
  5. Firewall evasion techniques?
    By knithx in forum OLD Pentesting
    Replies: 2
    Last Post: 09-21-2009, 06:46 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •