Windows Defender defeated by the -O3 gcc optimization flag

on
Windows Defender defeated by the -O3 gcc optimization flag

Decided to find out how would the Microsoft Windows Defender react on the -O3 gcc optimization flag if you compile a public reverse shell. I was using the reverse.c file from the https://github.com/dev-frog/C-Reverse-Shell repo with the following command:

i686-w64-mingw32-gcc -s reverse.c -o test.exe -lwsock32 -lwininet -O3

27/72 detection rate on virus total:

https://www.virustotal.com/gui/file/1d7ae6e025b052ae4fbd1bb95782562f2893a15944c6ab8e74c3088d1e287afb

fully updated Windows 10 machine:

https://preview.redd.it/ht6iqll4lc2c1.png?width=1588&format=png&auto=webp&s=01e9eb4f67451550bd964d490168165fc9cb56d5

The reverse shell in action:

embarrassing

submitted by /u/Infinite_Specific985
[link] [comments]


from hacking: security in practice https://ift.tt/YSehIna

Comments

Post a Comment