Re: Yet another AV bypassing question

[Average SecurityGuy <averagesecurityguy () gmail com>]

Have you looked at this
http://dev.metasploit.com/redmine/projects/framework/wiki/Using_a_Custom_Executable_to_Bypass_AV
?

On Fri, Jun 24, 2011 at 5:22 PM, Jason Hawks <jason.hawks0 () gmail com> wrote:

> Hello list,
>
> As many of you, I'm trying to bypass my AV but I'm not lucky with the
> metasploit encoders anymore.
>
> My Question is simple (but I don't know about the answer yet).
>
> Does modifying and recompiling meterpreter source code (with spread
> dummy instructions and a lot of try-and-error attempt) could help me ?
> or the main problem is not in meterpreter DLL but somewhere else ?
>
> Actually I got a try modifying the source code of meterpreter (using
> Visual Studio Express), but it didn't change anything. Therefore, I'm
> wondering if it's just a matter of tries or if I'm wasting my time.
> Am I looking in the right direction ?
>
> For information, I'm playing with McAfee 8.X right now.
>
> Thank you very much for your lights. Any other tips are welcome.
>
>
> Cheers,
> Jason
> _______________________________________________
> https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework