Can not load powershell or kiwi modules in meterpreter AV turned off

[russokiwi]

Loading other modules seems to be fine.

Steps to reproduce

How'd you do it?

1. Create a meterpreter executable using msfvenom;
2. Create a listner in msfconsole for the above executable to connect to;
3. Turn off anti-virus (Defender in this instance) on the victim OS (Both Real-time protection, Cloud Delivered Protection);
4. Establish meterpreter session by executing 1 above.

This section should also tell us any relevant information about the
environment; for example, if an exploit that used to work is failing,
tell us the victim operating system and service versions.

Up to date windows 11;
Up to date dockerised metasploit-framework from metasploitframework/metasploit-framework docker image;
This also doesn't work on other machines of various specs (server os, etc) that i have tried on in the lan;

Expected behavior

What should happen?

With AV Turned off, both kiwi and powershell modules should load.

Current behavior

What happens instead?

kiwi and powershell modules don't load.

Metasploit version

6.3.47-dev.

Additional Information

[02/29/2024 04:54:11] [e(0)] meterpreter: Failed to load extension: No response was received to the core_loadlib request.
[02/29/2024 04:54:11] [e(0)] core: Rex::RuntimeError No response was received to the core_loadlib request.

[adfoster-r7]

Up to date dockerised metasploit-framework from metasploitframework/metasploit-framework docker image;

I believe our docker image will need to be updated to bring in these Kiwi changes #18866

[russokiwi]

Up to date dockerised metasploit-framework from metasploitframework/metasploit-framework docker image;

I believe our docker image will need to be updated to bring in these Kiwi changes #18866

Thanks, I've rebuilt the image, kiwi works now. However, still issue with powershell

meterpreter > load powershell
Loading extension powershell...
[-] Failed to load extension: The core_loadlib request failed with result: 2147942411.

[adfoster-r7]

It looks like someone else hit this issue: #16784 (comment)

If you're able to debug why this is happening, that would be helpful!

[russokiwi]

doh, appologies, I didn't turn defender of this time - thought i did! anyway,

meterpreter > load powershell
Loading extension powershell...Success.

Thanks!

[github-actions]

Hi!

This issue has been left open with no activity for a while now.

We get a lot of issues, so we currently close issues after 60 days of inactivity. It’s been at least 30 days since the last update here.
If we missed this issue or if you want to keep it open, please reply here. You can also add the label "not stale" to keep this issue open!

As a friendly reminder: the best way to see this issue, or any other, fixed is to open a Pull Request.

[github-actions]

Hi again!

It’s been 60 days since anything happened on this issue, so we are going to close it.
Please keep in mind that I’m only a robot, so if I’ve closed this issue in error please feel free to reopen this issue or create a new one if you need anything else.

As a friendly reminder: the best way to see this issue, or any other, fixed is to open a Pull Request.