Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Bypassing ESET NOD32 Antivirus using Fileless
Message
<blockquote data-quote="Emmanuellws" data-source="post: 696925" data-attributes="member: 60108"><p>Bear in mind...I do pentest because I want to be a better defender. If I know the weakness of my product, I sure know how to protect myself better with combination of security tools, policy and configurations. Of course, this video is done in LAN environment...but if I am not lazy to setup port forwarding in my router I would have done that in the demo. But, that's not important..the important thing is, the malicious code to initiate the meterpreter is not even detected regardless the connection is local or internet. ESET is a good product, I don't like to bash because they are one of the veteran players in Antivirus industry..they have one the largest antivirus database in the world other than Kaspersky. Of course my friend asked me to bypass ESET NOD32 on default settings. So I did that. By default if a product can protect you from this kind of attack is considered good enough. Still it took me 3 days to fully bypassed ESET NOD32. It is not that easy...but it is possible. NOD32 Internet Security on theother hand might take me weeks...so I wont go there and not my job to prove that. MY point of being able to do pentest on my beloved products and bypassed it, just to make me realized that no Antivirus is 100% secure. In configured correctly, and with other security policy in-place...you are safe from this similar attacks. It won't be easy for hackers...if it is not easy...then it would discouraged them.</p></blockquote><p></p>
[QUOTE="Emmanuellws, post: 696925, member: 60108"] Bear in mind...I do pentest because I want to be a better defender. If I know the weakness of my product, I sure know how to protect myself better with combination of security tools, policy and configurations. Of course, this video is done in LAN environment...but if I am not lazy to setup port forwarding in my router I would have done that in the demo. But, that's not important..the important thing is, the malicious code to initiate the meterpreter is not even detected regardless the connection is local or internet. ESET is a good product, I don't like to bash because they are one of the veteran players in Antivirus industry..they have one the largest antivirus database in the world other than Kaspersky. Of course my friend asked me to bypass ESET NOD32 on default settings. So I did that. By default if a product can protect you from this kind of attack is considered good enough. Still it took me 3 days to fully bypassed ESET NOD32. It is not that easy...but it is possible. NOD32 Internet Security on theother hand might take me weeks...so I wont go there and not my job to prove that. MY point of being able to do pentest on my beloved products and bypassed it, just to make me realized that no Antivirus is 100% secure. In configured correctly, and with other security policy in-place...you are safe from this similar attacks. It won't be easy for hackers...if it is not easy...then it would discouraged them. [/QUOTE]
Insert quotes…
Verification
Post reply
Top