Comments (1)
riskydissonance
commented on July 20, 2024
Hey,
PoshC2 is open source (obviously) so the generated payloads are always likely to be heavily fingerprinted by AV.
You can take any of the generated .bin files in the payloads directory and use specialist AV evasion tools such as Veil, Unicorn etc, but it's always best to just take them and use those to create your own payloads that inject that shellcode.
Similarly you can take the generated binaries and manipulate them, such as encrypting them or packing them or finding the guilty bytes/behaviour and changing them, or take any of the generated sources files, such as the .c and .cs files, and edit those until the compiled payload no longer gets flagged.
Unfortunately the TL;DR is we give you the tools, but you have to do it yourself.
from poshc2.
Related Issues (20)
- [BUG] - PwrStatusMonitoring is not working
- [BUG] - SharpSocks not currently working - libhostfxr.so could not be found HOT 2
- [BUG] - Package 'libicu63' has no installation candidate HOT 1
- [BUG] PoshC2 Init while creating Donut payload fails HOT 2
- [BUG] PY_SSIZE_T_CLEAN macro must be defined for '#' formats HOT 3
- [BUG] Python 3.10 Compatibility
- [BUG] macOS JXA/JS implant doesn't check in
- [FEATURE] Command output in Implant Handler Process
- [BUG]
- [BUG] download-file command via PBind-Sharp pivot is broken
- [FEATURE] OneDrive and Google Drive As C2
- [BUG]Implants only connecting via TLSv1 causing fatal negotation error. HOT 3
- Linux implant ("native_dropper") not proceed to stage 2
- Posh Server doesn't start because of missing python modules; e.g. yaml HOT 3
- [FEATURE] Tagging Beacons & More
- [BUG] HOT 2
- [BUG]
- [BUG] - python3: No module named pipenv
- [BUG] - enable-rotation in implant issue HOT 1
- Add custom URLs option for the UrlConfig config.yml attribute
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from poshc2.