PaulDotCom mailing list archives

hiding netcat

From: cclymer at gmail.com (Chris Clymer)
Date: Sun, 16 May 2010 11:26:17 -0400

Chris,

Hakin9 did an article on exactly that...getting netcat past AV.  I  
believe its this issue:
http://hakin9.org/magazine/856-breaking-client-side-certificate-protection

Also, Dave Kennedy has a blog post on how he's bypassing AV for SET  
using some of the tools already mentioned in this thread:
http://www.secmaniac.com/february2010/set-v0-4-1-rise-of-the-pink-pirate/

Chris

On May 15, 2010, at 1:02 PM, Professor Thread wrote:

On 05/15/2010 03:08 PM, Chris Teodorski wrote:


All,

Does anyone know a good way to sneak netcat past modern AV?

Chris


Have you tried nmap's "ncat" version?


_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20100516/b0412733/attachment.htm

Current thread:

hiding netcat, (continued)
- - - hiding netcat Paul Asadoorian (May 17)
  - hiding netcat Rob Fuller (May 15)
    - hiding netcat Chris Teodorski (May 16)
    - hiding netcat Jim Halfpenny (May 17)
    - hiding netcat bytes abit (May 17)
    - hiding netcat Ali Alhebshi (May 18)
    - hiding netcat xgermx (May 19)
    - hiding netcat Nicholas B. (May 19)
    - hiding netcat Nils (May 19)
  - hiding netcat Sebastien J (May 15)
  - hiding netcat Chris Clymer (May 16)
- hiding netcat Michael Allen (May 15)
- hiding netcat Prashant Mahajan (May 15)