Executing Meterpreter on Windows 10 and Bypassing Antivirus
["
One of my Labs colleagues recently published an article on the Coalfire Blog<\/a> about executing an obfuscated PowerShell payload using Invoke-CradleCrafter.<\/a> This was very useful, as Windows Defender has upped its game lately and is now blocking Metasploit’s Web Delivery module. I wanted to demonstrate an alternate way to achieve the same goal, without dropping any files on the host system while providing more options depending on what ports can egress the network.<\/p>\r\n\r\n
To generate the payload, I decided to go with