Going fileless and evading antivirus
Most organizations allow users to access their internal infrastructure, or have a flat network. It is mandated that matured organizations or banks have segregated networks and strict rules on their internal firewall and endpoint protection solution to block any non-traditional ports such as 4444
, 5444
, or anything that is not 80
or 443
, to drop the packets. So, it is recommended to utilize ports 80
or 443
for all listeners during testing. In this section, we will explore some quick wins to bypass security controls and take over any system.