Thank you so much for checking out the Havoc Framework !!!!

Whenever I look into some new topic you magically seem to make a video on it right after, nice!

Damn i love the way you explore the new programs, how you navigate, how you research and how you do your trial and error. I love to see more!!

great video John! suggestion for the next video like this - keep Defender with default settings "on" to create a little challenge. Disabling almost all protection except basic RTP is not true bypass and like selecting "I'm too young to die" difficulty level :)

@23:28 Worth to note that Windows Defender is almost worthless without cloud protection turned on.. So is Malware bytes, BitDefender, Kaspersky, Sophos and most AV applications. Patching the OS does not automatically update Win Defender's IoC's and rule sets to detect malware or suspicious behaviour

First video I have seen where the defender failed lmao. Crazy framework, cool video. Ty C5pider

18 and creating this, this guys going places!

Thank you John, appreciate your content 🙂

You should make a video going over your VM's. I am interested in how that is setup and how much space is typically required to have a VM setup like that.

I'm a huge fan of your videos man. Only thing I don't understand is you show that it's a complete up-to-date machine and you have defender enabled, but you have many things disabled including tamper detection? Am I wrong or aren't most people trying to learn how to *get around* windows anti-virus. Either way you're the man. Just don't understand unless you expect everyone viewing to know you have to do way more to get through windows AV. ?

I know what i am doing tonight! I will try to check some of the logs in security onion with wazuh and sysmon and see what we can add for detection

Hi John, I really appreciate your content and it’s really fun to watch. Just curious have you tested this also with Defender for Endpoint if it still remains undetected? Best regards Tim

Awesome. Im going to test this in my environment... Maybe in one of my internal phishing campaigns (evil laugh)

Thanks for the content , now your getting close and close to the real malware world

22:18 tbf defender is waaaayyy worse without cloud protection.

I find it impressive to see these types of tools so powerful, and then you see the description of the repository saying "made just for fun" lol

You would need to fix the broken dependency causing apt to throw error, then the scripts will probably work. Maybe just a clean of apt would have done the trick :)

the framework itself is always more important IMO than the client itself because most people are going to end up heavily modding it anyways to avoid getting signatured. for cs beacon ill rewrite the same function differently and add do random math operations or sleeps. if ur gnarly then change how it communicates to c2 maybe. great vid as usual brother 👍

Hi John Great video. Just to let you know that it's the team server in the image with the two systems.

Is that payload still would be undetected with cloud scanning feature on ? If no, what's the point of showing this ?

you are the reason im so into cyber security now thank you. bro can you please show us how you would maintain connection to a server once is hacked? I'm doing the oscp but they don't teach you that and I was asked this twice in job interviews.

totally awesome man!

Thank you john!

Thank you so much

15:44 Star platinum (JoJo reference)

Hello sir! Thank you for great content! Please add a pop filter to your mic...

Really really wonderful. Wish i can be your student directly.

12:10 Hashicorp makes terraform!

I love this channel Great job 👍 👌

John You need to update repository before installing programs. That easy fix

Going to definetly be setting this up in the lab to mess around with

Cool! Say pls, what laptot you use?

would have been interesting to see the VT results of that exe, see what other vendors block

Windows Defender with cloud protection disabled is pretty useless. It won't even detect even basic malware techniques.

Is it persistent? I noticed it hides in calc.exe in this case, what if the user would reboot :P?

what do you use for screen recording?

Wow that looks amazing I wonder if windows 10 would catch it

John which laptop do you recommend for hacking?

Basically he made his undetectable metasploit

This really was a havoc🎸

You earned my sub ;)

Why do my connections become unresponsive and I can't do anything with the connection?

Why not with enabled cloud protection?

Thank but now is not work

which C2 framework you use in your Job as Professional

This is interesting no lie

Is the same on win 7 and win 8.1? Or they have better defense nowadays? XD

I have same problem when trying to install golang on Kali

Plz how can I get the cookies and keyloaggers section from the client ?

I’m new to all of this. Why does Linux and GitHub make it so nerdy to install something? Like you have to type so many commands? Why wouldn’t they just make a packet installer gui and just click and it install everything? Is this a Linux user thing where they make everything seem longer than expected? Sorry for my ignorance but someone like to make me understand…..

using this and never lagging

Did you have to have calc.exe running already in order to inject the code?

does this works on WAN? If yes, how to configure it?

can you do meterpreter payload with that?

How to bypass UAC Windows on victime machine with this C2?

ha...... John Hammond i am big fan for your video. i am see your video last 2 years. i am from India. john can create video from "how to use snyk and what is best scanner for find bug any web application

HANDS UP GIVE ME THE KNOWLEDGE 🔫

but why not use kali linux there tool are bettter

What is the MD5 of the exe?

I have malware too. I'm isolated to a terminal without an operating system, but have full backdoor access to the attackers entire file system.

It really works Im shocked

havoc framework reminds me of the xposed framework lol

i cant install python 3.10 it said that: E: Unable to locate package python3.10 E: Couldn't find any package by glob 'python3.10' E: Unable to locate package python3.10-dev E: Couldn't find any package by glob 'python3.10-dev' what can i do now :((

hey john, i'm a cybersecurity student and i learned how to use NMAP then i scan my home network then i found my SmartTv {LG} send traffic to 1111 port known as "lmsocialserver" so i searched in internet and i found that this port used by a Trojan virus that open a backdoor is this a bad boy or it's ok ?

Thanks 4 ur video, this C2 not working to attack Linux Machines.

Damn John. You losing weight? Lookin' slim.

can I build this in Termux?

So, how much time until this is detected by Defender?

Why yo hair look different?? What you do?? I like

It looks terraform like cuz it is! :)

IS THIS WORK OVER WAN...🤔

I had scanned the agent on virustotal now just incase some AV didnt detect it ! Doing my part to make security tools better

Defender is not fully on... it basically needs cloud protection and its also what is on by default. You are not testing real enviroment.

Its getting blocked by defender now

o dear johm.. john ... john... we know that windows is not fully running security, if you turn on Application Guard which is part of defender its going to check the .exe file and also what source it comes from which in your case is "UP DOG" defender knows what you up to it will not allow the .exe to save and run it, hey i know this is your bread and butter but.... please do it in a correct configured enviroment or say at least " this is a home setup and not a enterprise setup " don't BS people.... we all know this will not run

Any videos on firewall and bypass methods?

Let's see what u got here:D

the whole tNice tutorialng but then you have a solid foundation.

this very dangerous framework

Heyyy John i have malware i don't know how to give that to u

Now getting detected as of now

You tried editing sources.list as a non root user bro.

it is still undetactable 😂😂😂

18 yo ...

For the love of God people don't upload these payloads to Virus total like please don't, these undetectable payloads don't come by everyday and take a good while to develop don't let the creators work go to waste

please fix the right channel high end squeak ???

whats updog?

Is there any WhatsApp group of cybersecurity professionals, practitioner,hacker kind of where could discuss.

I can't resize the edit listener window 😭

Ay man

Hi nerd =))))

Windows defender is almost useless without cloud turned on if I remembered correctly

can i send you a virus i desperly tried to erase from my computer? its still on despite the many Factory resets my pc did go trough, it activates itself 1 time in 3 months and a simple reset to the last day solves it. but its still anoying, can i send it to you and you maybe figure out how i can be free from this thing? Information: (i think) a simple user control that always jumps to the first thing and locks onto it, like the desktop it locks the first file and you cant click anything else than that file, 450MB~ a single windows executable (exe) got it from trying to download a game, now trapped the file in my USB-Stick. would be nice if you would help/answer -Fellow beginning Hacker

Hey john I recommended using Nala. Nala is a front-end for libapt-pkg. It`s most of the time fix these kind a errors. Search: Nala GitLab

does anyone know where i can get the pirated version of soft soft

Why does windows not have any good virus proofing yet Linux got toram good luck infecting a operating that runs on a rom. I wish I can get windows on a rom with toram while storing files on internal drive so the internal drive can fail and I only loose my files not the operating system and to remove a virus all you need to do is wipe or replace the drive. Windows don't support roms even if you can get it on there correctly it needs to write to the drive just to boot. So windows gets a virus and your os you paid for is useless windows sucks. There's very few things I can't do on Linux that I can do on windows

i just hate apt it's pure trash

Legend hammond

Shift + F10 Regedit HKEY_LOCAL_MACHINE/SYSTEM/Setup New key LabConfig New DWord 32 bit BypassRAMCheck (1) BypassTPMCheck (1) BypassSecureBootCheck(1) BypassCPUCheck(1) It works fine on a laptop from 2011. None of that other stuff seems to be needed. Laptop does run warmer so keep an eye on thermal limits. This is because processors are working harder to keep up but system is faster. However, Win 11 seems to have a big problem. Most need to be online to sign in. If you didnt set a local user and you dont have internet you are screwd and cant log into your pc. I was locked out for like 2 hours and starting thinking id have to format and reinstall windows. Luckily the router was the problem not the PC. The ol off and on trick fixed it. Should someome find a way to ransomware that you would have a very bad day. You wouldnt even need to do a lot if work. Windows does all the hard work for the attacker. Something like a script or app that could refreshes wifi repeatedly or switches it off as you switch it on on startup would do the trick. I have a very bad feeling about win 11 so much so that i have my win10 on standby ready to roll if 11 goes crazy. Its nice but i have concerns. Im stil useing it to get a proper feel for the system and give it a good try but its been off to a very bad start. .