Bypass all AV's & Make Payload that never dies

[qGodless]

look into the realm of rootkits which is super hard, plus you would have to target a specific set of UEFI firmware's ( most likely their vulnerabilities ),

These worlds always gets me hyped up. Though I'm a beginner, Today these simple scripts and tomorrow UEFI & rootkits hopefully. everyone have to start somewhere.

Thanks for the book it seems informative

 

[qGodless]

TS, I suggest another option. The idea is to remove the antivirus and replace it with your copy with the payload. Learn, try.

unfortunately popular AV's come with a good feature which prevent it from getting killed/stopped using taskmgr or codes. The only way to stop it is to open the AV GUI, disable the feature. And then you can kill/replace it

One option: You can uninstall the AV entirely but it's gonna cause some lag and suspicion to the target & alot of time

Good idea overall

 

[Quake3]

unfortunately popular AV's come with a good feature which prevent it from getting killed/stopped using taskmgr or codes. The only way to stop it is to open the AV GUI, disable the feature. And then you can kill/replace it

Да ладно! Что ты говоришь! А винда такой фишкой не обладает? Почитай про SFC, еще начиная с XP оно есть.

 

[Aster]

unfortunately popular AV's come with a good feature which prevent it from getting killed/stopped using taskmgr or codes. The only way to stop it is to open the AV GUI, disable the feature. And then you can kill/replace it

One option: You can uninstall the AV entirely but it's gonna cause some lag and suspicion to the target & alot of time

Good idea overall

I can't agree, even miner can kill AVs processes (Not all ofc)

 

[qGodless]

I can't agree, even miner can kill AVs processes (Not all ofc)

Thats what im saying, not all. Some you can't kill even with physical access