pyRAT: a tool for antivirus evasion
KeywordspyRAT ; Antivirus ; Evasion ; Meterpreter ; Penetration ; Metasploit ; Security ; Exploitation
Given today’s radically increasing number of cyber attacks, information security has become one of the most complex and important issues of concern at the world’s leading organizations. This has motivated a large number of penetration testers to indulge and develop tools and techniques, similar to those used by real hackers, to attack systems in order to reveal security flaws. The aim of this thesis was to design and implement a tool (pyRAT) which automates the generation of Metasploit payload executables that have the ability to invade systems without getting detected by most antivirus solutions. pyRAT meets all the requirements of usability and makes use of the penetration testing tool, called Metasploit Framework along with its features. The exploitation process has the intention of gaining access to the vulnerable system by creating a meterpreter session between the user and the target system. pyRAT is developed, strictly, for educational purposes and its ultimate goal is to be a helpful tool during the process of a penetration test. Any other malicious or illegal use of this tool is not recommended. Overall, this work has provided a great learning opportunity in the area of ethical hacking using penetration testing.