Anti Virus's block everything

For beginners, flames not allowed...(just by the staff :P)
Post Reply
User avatar
r_sole
forum buddy
forum buddy
Posts: 10
Joined: 08 Sep 2006, 16:00
14

Anti Virus's block everything

Post by r_sole »

Antivirus's block every trojan that I've ever tried to use, so can someone answer me please, how your meant to use them? Im not trying to be rude in any way, Im just confused. How are you meant to use a trojan without it being picked up by anti-virus's?

User avatar
Gogeta70
^_^
^_^
Posts: 3251
Joined: 25 Jun 2005, 16:00
15

Post by Gogeta70 »

Turn off your antivirus temporarily.
¯\_(ツ)_/¯ It works on my machine...

User avatar
r_sole
forum buddy
forum buddy
Posts: 10
Joined: 08 Sep 2006, 16:00
14

Post by r_sole »

okay after re-reading my post i realised i worded it completely wrong. I mean the server gets picked up on the other persons anti-virus.

User avatar
bad_brain
Site Owner
Site Owner
Posts: 11549
Joined: 06 Apr 2005, 16:00
15
Location: The zone.
Contact:

Post by bad_brain »

you have to bind the server to another file to camouflage it, and you have to use one which has the ability to disable AV-apps. but this will not work for every antivirus-app, only for the ones which don't have the ability of self-protection. Norton for example has self-protection, but no app is 100% secure, so check for vulnerabilities on the usual websites, some antivirus apps exclude certain file-types or directories from beeing scanned for example (on Norton it was (is?) the "Norton Protected Recycle Bin" as far as I remember).
I know, this trojan stuff is very interesting for beginners, but don't waste too much time with it.... :wink:

User avatar
r_sole
forum buddy
forum buddy
Posts: 10
Joined: 08 Sep 2006, 16:00
14

Post by r_sole »

Yeah I tried binding aswell, it would still get picked up.
Is it that the trojan I tried to use is specifically known by the antivirus and 'black-listed', or is it that the trojan gets picked up because of the suspicious way in which its written. Im just curious because I've read that you can buy trojans that will go undetected and wondering how theyre any differant.

User avatar
bad_brain
Site Owner
Site Owner
Posts: 11549
Joined: 06 Apr 2005, 16:00
15
Location: The zone.
Contact:

Post by bad_brain »

the only difference is that such trojans have not made it into the signature-lists of the AV apps yet because the code is edited in some way, but it's just a question of time until they are found/reported by somebody and will become "detectable"... :wink:

User avatar
DNR
Digital Mercenary
Digital Mercenary
Posts: 6114
Joined: 24 Feb 2006, 17:00
15
Location: Michigan USA
Contact:

fingerprints and signatures

Post by DNR »

Think of a virus 'signature' as a fingerprint.
The antivirus app compares the file's code to this fingerprint, the fingerprint is kept in a database of known suspects. If the file's code is a match or even close to a suspect fingerprint, it is red flagged.

Suspects evade detection because they don't have a fingerprint in the database yet, or it's print was modified enough to not be a match to a known fingerprint.

The otherway to evade detection is to not get scanned, i.e. prevent the antivirus app from working! :wink:
-
He gives wisdom to the wise and knowledge to the discerning. He reveals deep and hidden things; he knows what lies in Darkness, and Light dwells with him.

User avatar
r_sole
forum buddy
forum buddy
Posts: 10
Joined: 08 Sep 2006, 16:00
14

Post by r_sole »

ohh okay. So this means if you made your own trojan things would be all sweet then :D - Not that I would try because I'm much too lazy, but thanks for clearing all that up for me. Say, are there open source trojans you can get somewhere to look at and see how they are coded, just to give an idea of how it is done. If not it doesn't matter, but just wondering.

User avatar
Gogeta70
^_^
^_^
Posts: 3251
Joined: 25 Jun 2005, 16:00
15

Post by Gogeta70 »

¯\_(ツ)_/¯ It works on my machine...

User avatar
r_sole
forum buddy
forum buddy
Posts: 10
Joined: 08 Sep 2006, 16:00
14

Post by r_sole »

Thanks, thats sites pretty cool...Um this is gonna sound really stupid, but how do you turn a .cpp file into an exe. I got something called 'Bloodshed Dev-C++' but it was not was I was looking for. Isnt there some program that will just turn a cpp file into an exe?

User avatar
Gogeta70
^_^
^_^
Posts: 3251
Joined: 25 Jun 2005, 16:00
15

Post by Gogeta70 »

Dev C++ is exactly what you're looking for. It's a compiler. This is where the script kiddie part comes in: learn some C++.
¯\_(ツ)_/¯ It works on my machine...

User avatar
r_sole
forum buddy
forum buddy
Posts: 10
Joined: 08 Sep 2006, 16:00
14

Post by r_sole »

haha okay point taken.

Post Reply