Undetectable Windows Reverse Shell
Introduction
Welcome to this new article, today I am going to show you a Reverse Shell that is undetectable for Windows Defender, so if you get a RCE (Remote Code Execution) you will be able to get a fully interactive shell even if Windows Defender is active.
This tool is called HoaxShell, it is a tool created by t3l3machus that is defined as follows:
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
And here you have the link:
hoaxshell is a Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell, based on the following concept:
Laboratory
The laboratory that I used to test and test this tool was the following element list:
- Windows Server 2016 (Victim)
- HoaxShell
- Kali Linux