all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Discrepancies in detecting obfuscated payloads by Windows Defender?

Add to bookmarks
Sept. 28, 2022, 2:23 p.m. | /u/0x4e696b

cybersecurity www.reddit.com

I decided to learn something about obfuscating payloads so I read some articles and got onto our lab environment and started testing, for example with [Invoke-Obfuscation](https://github.com/danielbohannon/Invoke-Obfuscation). For the time being I stuck with obfuscating PowerShell payloads and testing them against Windows Defender.

First, I took the PS payloads from [PayloadsAllTheThings](https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Methodology%20and%20Resources/Reverse%20Shell%20Cheatsheet.md) and started obfuscating them with Invoke-Obfuscation. For example I followed a [tutorial by Linode](https://www.linode.com/docs/guides/windows-red-team-defense-evasion-techniques/) which uses AST obfuscation. This did not work for me as either the payload script threw …

cybersecurity defender obfuscated windows windows defender

Visit resource

More from www.reddit.com / cybersecurity

Any ideas on how I can convince my boss to not require users to give … 4 hours ago | www.reddit.com
admin admin rights boss can +11
ArcaneDoor hackers exploit Cisco zero-days to breach govt networks 10 hours ago | www.reddit.com
arcanedoor breach cisco cybersecurity +5
Advice for imposter syndrome 10 hours ago | www.reddit.com
advice analyst ask current +10
Has anyone made it out of this field? 15 hours ago | www.reddit.com
cost cybersecurity don down +3
Unauthenticated privilege escalation in Horacius (Identity and Access Management) - CVE-2024-29417: a security software vulnerability … 15 hours ago | www.reddit.com
access access management cve cve-2024 +18
Are Level 1 & 2 SOC Analyst's becoming irrelevant positions? 16 hours ago | www.reddit.com
amp analyst current cybersecurity +11
How will the US ban Tiktok on a technical level? 20 hours ago | www.reddit.com
app apple app stores ban +15
Being used?? 20 hours ago | www.reddit.com
checkbox cyber cyber security cybersecurity +4
Are ISO 42001 and NIST AI RMF on Your Radar This Year? 21 hours ago | www.reddit.com
ciso cybersecurity frameworks industries +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cyber Security Cloud Solution Architect

@ Microsoft | London, London, United Kingdom
View on infosec-jobs.com

Compliance Program Analyst

@ SailPoint | United States
View on infosec-jobs.com

Software Engineer III, Infrastructure, Google Cloud Security and Privacy

@ Google | Sunnyvale, CA, USA
View on infosec-jobs.com

Cryptography Expert

@ Raiffeisen Bank Ukraine | Kyiv, Kyiv city, Ukraine
View on infosec-jobs.com

Senior Cyber Intelligence Planner (15.09)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com
View more jobs