/d/hacking icon

/d/hacking

9,520 subscribers

Everything related to hacking, opsec, and programming. Malware, phishing, DDoS, coding, research and news.

Rules:

• Be civil.

• No promotion for paid content or selling of guides.

• No looking for or advertising hacking services. For that please visit /d/Jobs4Crypto.

• Be nice to newbies, you used to be one of them.

All rules as well as the punishments are here.

can a custom RAT get pass an anti-virus?

by /u/latentsins · 1 votes · 1 month ago

I know to code, but new to hacking. I never tried to make a RAT before

I tried downloading some old RAT but all got picked up by windows anti-virus immediately

If I code a RAT with go, will it be easy for an AV to pickup? How can I know what to avoid in my code?

In direction in what to do to make a good RAT would be appreciated.

Comments (15)
/u/sagitari0 · 2 votes · 1 month ago · Link

There is a framework already done in Go to evade some protections, take a look if it is enough

hxxps://github.com/p3tr0v/chacal

Nerbian RAT have using this framework.

/u/AutoModerator M · 1 votes · 1 month ago · Link

All links require moderator approval.

This comment was posted automatically by a bot. All AutoModerator settings are configured by individual communities. Contact this community's Moderators to have your post approved if you believe this was in error.

/u/latentsins OP · 1 votes · 1 month ago · Link

your link was removed, what did you post?

/u/Cyberjagu Moderator · 2 votes · 1 month ago · Link

Approved !

/u/Skunkadelic · 1 votes · 1 month ago · Link

You have to modify the code so that the antivirus does not notice your RAT, to make it FUD. You can use encoders but I don't have any name to suggest you, I don't use them anymore.

/u/latentsins OP · 1 votes · 1 month ago · Link

What does FUD mean?

/u/GasLighter · 1 votes · 1 month ago · Link

FUD mean fully undetected, Doesn't get flagged by any antivirus

/u/latentsins OP · 1 votes · 1 month ago · Link

Got it. right FUD is the goal. I read somewhere that python might be able to do that since the AV reads machine code but since python is an interpreted language, the AV might not detect it

/u/latentsins OP · 1 votes · 1 month ago · Link

here is the link to that discussion about python

dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad.onion/post/d97c7a1919fe6b23cda4/#c-67587456bd1eeb4ce7

/u/AutoModerator M · 1 votes · 1 month ago · Link

All links require moderator approval.

This comment was posted automatically by a bot. All AutoModerator settings are configured by individual communities. Contact this community's Moderators to have your post approved if you believe this was in error.

/u/Skunkadelic · 1 votes · 1 month ago · Link

Right, and some payloads are very easy to rewrite and then you can try them on antivirus software and see if they pass.

/u/Skunkadelic · 1 votes · 1 month ago · Link

Fully undetectable

/u/donpedelico · 1 votes · 1 month ago · Link

[removed]

/u/AutoModerator M · 1 votes · 1 month ago · Link

Promotion of paid content is strictly forbidden.

This comment was posted automatically by a bot. All AutoModerator settings are configured by individual communities. Contact this community's Moderators to have your post approved if you believe this was in error.

/u/ultrablakkk · 1 votes · 1 month ago · Link

Can anyone help me create a custom rat, i need it for running some tests. pm me n include $.