Page 7 of 12 FirstFirst ... 56789 ... LastLast
Results 61 to 70 of 114

Thread: [script] for AV evasion

  1. #61
    Just burned his ISO killtrace's Avatar
    Join Date
    May 2012
    Posts
    4

    Default Re: [script] for AV evasion

    I have download it and put it to metasploit folder,after that I ran SET create payload from menu of 16,I zip it copied to my flash,past it to my other PC and Avast still detect it o.0?

  2. #62
    Junior Member
    Join Date
    Aug 2011
    Posts
    34

    Default Re: [script] for AV evasion

    Quote Originally Posted by killtrace View Post
    I have download it and put it to metasploit folder,after that I ran SET create payload from menu of 16,I zip it copied to my flash,past it to my other PC and Avast still detect it o.0?
    it doesnt work like that, to use the script you must execute it "./crypter" (not sure if crypter is the actual name of the script) , if you really want to execute through SET you have to modify your SET

  3. #63
    Just burned his ISO killtrace's Avatar
    Join Date
    May 2012
    Posts
    4

    Default Re: [script] for AV evasion

    somehow I can't... o.0 I did " cd /obt/metasploit (I puted crypt there ) after that I did " ./crypt.py " I get "Permission denied" :S

  4. #64
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: [script] for AV evasion

    Did you "chmod 755 crypter.py" ??
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  5. #65
    Just burned his ISO killtrace's Avatar
    Join Date
    May 2012
    Posts
    4

    Default Re: [script] for AV evasion

    bad new new NOD Eset 5 system detect it -.-

  6. #66
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: [script] for AV evasion

    Can you be a little more specific ? Screenshot maybe ?
    Does it really flag it as a trojan or something or is it a behavior monitoring thing ?
    It had to be detected sooner or later I guess. I'll look into it. Maybe it can be bypassed with minor adjustments.
    I'll get a trial version and start some testing.
    Last edited by LHYX1; 06-07-2012 at 05:10 AM.
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  7. #67
    Good friend of the forums zimmaro's Avatar
    Join Date
    Mar 2010
    Location
    milano
    Posts
    407

    Default Re: [script] for AV evasion

    hi,i'm testing now!!!!!!!
    the script worked beautifull versus win 7 (fully-patched)+ nod32 v5 version 5.2.9.1

    +1 to lhyx1

  8. #68
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: [script] for AV evasion

    @zimmaro thanx for testing the script with nod32 v5 version 5.2.9.1
    I din't test anything yet. You were quicker

    @killtrace I think you did something wrong mate
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  9. #69
    Junior Member
    Join Date
    Aug 2011
    Posts
    34

    Default Re: [script] for AV evasion

    i tested it on Comodo internet security and avast 7, it doesnt get detected as virus in both cases however comodo firewall (safe mode) blocks the connection without any warning and avast auto-sandbox it

  10. #70
    Just burned his ISO
    Join Date
    Jun 2012
    Posts
    4

    Default Re: [script] for AV evasion

    i get an error?


    Traceback (most recent call last):
    File "./crypter.py", line 89, in <module>
    a = open(payload_raw,"rb")
    IOError: [Errno 2] No such file or directory: 'temp.raw'

    how can i fix this?

    Thank you.

Page 7 of 12 FirstFirst ... 56789 ... LastLast

Similar Threads

  1. Script for simple AV evasion (tested on AVG, Avast, Emisoft)
    By LHYX1 in forum BackTrack 5 General Topics
    Replies: 16
    Last Post: 05-01-2012, 09:26 PM
  2. Script for simple AV evasion (tested on AVG, Avast, Emisoft)
    By LHYX1 in forum BackTrack 5 Beginners Section
    Replies: 1
    Last Post: 07-16-2011, 02:16 PM
  3. Snort Signature Evasion with Metasploit
    By T0XIC in forum BackTrack 5 Videos
    Replies: 6
    Last Post: 07-01-2011, 12:21 PM
  4. Advanced antivirus evasion techniques
    By AzraelSepultura in forum Beginners Forum
    Replies: 4
    Last Post: 03-01-2011, 06:57 AM
  5. Firewall evasion techniques?
    By knithx in forum OLD Pentesting
    Replies: 2
    Last Post: 09-21-2009, 06:46 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •