Windows Red Team Persistence Techniques | Persistence With PowerShell Empire

Поделиться
HTML-код
  • Опубликовано: 23 дек 2024

Комментарии • 45

  • @korovamilkplus
    @korovamilkplus Год назад

    I'm glad I took this course and learned the basics of PowerShell-Empire/Starkiller, which I barely knew before (it's briefly mentioned in PTSv2).
    However, after many attempts and many hours "lost," I can say that today Windows Defender can block almost everything.
    In addition to the aforementioned powershell/privesc/bypass, which only works with Windows Defender disabled (and even requires user input LOL), persistence techniques are also easily blocked.
    Both registry method and scheduled task method at Windows reboot do not reconnect to the Listener, and a quick look at the Windows Defender history shows that they are blocked easily.
    In practice, the only thing that still works is Invoke-Obfuscation! :,)
    Anyway, as always, thank Alexis for using your time to share your knowledge with everyone for free.
    See you soon!

  • @rudrasalaria3431
    @rudrasalaria3431 3 года назад +1

    You are great teacher. Seriously. Your skill are amazing. I am your fan. Lots of love from India. 🇮🇳

  • @mohadioum3314
    @mohadioum3314 3 года назад

    yayyyyyy Fav Teacher back again with another video ( hackersploit voice )

  • @djmeezymeez940
    @djmeezymeez940 3 года назад +1

    Another one from hackersploit 🔥🔥🔥

  • @mohammed-jb5ic
    @mohammed-jb5ic 2 года назад

    Hackersploit Back again with another video😍

  • @rahulramteke3338
    @rahulramteke3338 3 года назад +1

    Good stuff
    Keep up the good work

  • @honorvirtue2904
    @honorvirtue2904 3 года назад +1

    Perfect as always 😎

  • @shadowintel_
    @shadowintel_ 3 года назад

    As always great video keep it doing 😊

    • @kastakastakasta2933
      @kastakastakasta2933 3 года назад

      Check this one out ruclips.net/video/K3t6Jf3vuPw/видео.html

  • @Chris-zc9bp
    @Chris-zc9bp Год назад

    I did learn some from this. But non of the persistence techniques seem to work on WIn 10 anymore. Spent all day trying

  • @rayane2290
    @rayane2290 2 года назад

    It s ennificient I find that hackers can't send the infectious.xls with defender windows enable . I guess there is some code to disable windows defender or make the infectious files stealth ?

  • @javiercherin
    @javiercherin 3 года назад +1

    Hey guys i have a question, i need to protect windows in passive mode against linux cd usb, there is a way i can do that ?🤔 Because i try with bios UEFI secure boot but him just take of the bios battery reset password disabled secure boot...
    Total encryption is no admissible actually because difficulty to reach access in case we need recover something, so i am looking by something in a windows file system level ? I need block him to replace magnify by cmd... Ty in advance.

    • @maddinmanek8679
      @maddinmanek8679 3 года назад +1

      Probably protecting physical access?

    • @javiercherin
      @javiercherin 3 года назад

      @@maddinmanek8679 ty, yeas i guess i will need some kind of key lock physically.
      Would be nice be at the top of the food chain by blocking access in a binary way and show muscle 💪🏻 😁 hope i can do something at a binary level like encrypt just windows folder, that would be nice 🙂

    • @kastakastakasta2933
      @kastakastakasta2933 3 года назад +1

      ruclips.net/video/K3t6Jf3vuPw/видео.html

  • @marlymutos1000
    @marlymutos1000 3 года назад

    Thanks for the knowledge

  • @8080VB
    @8080VB 3 года назад

    Useful , also its better to take a snapshot before trying .

  • @50_Pence
    @50_Pence 3 года назад

    Anyone else have problems getting PE to work on the last few builds of kali?

  • @Sh3lld0n
    @Sh3lld0n 3 года назад

    Hello sir! Can I download your videos from link in the web site?

  • @arcane2024
    @arcane2024 3 года назад

    Every time when I use *Metasploit* with my *Windows 10* _command prompt._ it shows me an *error* like this:
    *Unable to load the EventMachine C extension; To use the pure-ruby reactor, require 'em/pure_ruby'*

    • @disrael2101
      @disrael2101 3 года назад +1

      Missing packages to run it

    • @arcane2024
      @arcane2024 3 года назад

      @@disrael2101 What should i do

    • @itzzbayzz
      @itzzbayzz 3 года назад

      @@arcane2024 why not just run it in linux?

    • @arcane2024
      @arcane2024 3 года назад

      @@itzzbayzz Today I installed kali linux in virtual box. Now it is working fin. thanks

    • @arcane2024
      @arcane2024 3 года назад

      *_Thanks for everyone who help_*

  • @fafnirgolga2394
    @fafnirgolga2394 3 года назад

    Most commentors of this channel should take a complete Linux basic course to stop asking basic questions....

  • @chandraprakashpandian
    @chandraprakashpandian 3 года назад +1

    💥💥💥

  • @exploitnerd5049
    @exploitnerd5049 3 года назад

    Love it

  • @ramnikTDM
    @ramnikTDM 3 года назад

    💀😈

  • @sanskar894
    @sanskar894 3 года назад +1

    First💀

  • @ayyamguari6134
    @ayyamguari6134 3 года назад

    Please add English subtitles to your videos sir

    • @sandeepr7141
      @sandeepr7141 3 года назад

      Why? His accent is understandable

    • @Hoax711
      @Hoax711 3 года назад

      @@sandeepr7141 I don’t think it is the man’s English that is the problem but some people need the subtitles to better understand what is being said (regardless of if the speaker “has an accent”))