search

UnamSanctam / UnamBinder

A Free Silent (Hidden) Open-Source Native Binder - Includes Windows Defender Bypass - Unam Binder
MIT License
239 stars 47 forks source link

Persistence and legal issues =D #48

Open MerlinDusBot opened 2 years ago

MerlinDusBot commented 2 years ago

It would be nice to have a persistence option like the famous .vbs that recreates the exe and executes it when deleted

an option to camouflage in processhacker, taskmgr and others like tetm in your cryptocurrency miner

and finally, if possible, it bypasses Windows Defender, it would be extremely perfect and would certainly be the choice of binder for the entire community. Thank you in advance, I really like your programs! Hug!

MerlinDusBot commented 2 years ago

I forgot to mention one that would be cool too. An option to run some specific binder process(es) in the background without appearing on the monitor or option to put this process on PC startup

UnamSanctam commented 2 years ago

It would be nice to have a persistence option like the famous .vbs that recreates the exe and executes it when deleted

Well a "Startup" feature is planned though that wouldn't be "persistent" per say (it won't have a watchdog).

an option to camouflage in processhacker, taskmgr and others like tetm in your cryptocurrency miner

I'm not really planning to implement injection (camouflage) like the miner because it's quite difficult to do since there are many constraints, such as different architectures, and .NET files would need to be converted to shellcode and shellcode loader as such.

and finally, if possible, it bypasses Windows Defender, it would be extremely perfect and would certainly be the choice of binder for the entire community. Thank you in advance, I really like your programs! Hug!

Yes I'm planning to bypass Windows Defender more after I finish "perfecting" the miner since much of the code will be used in the binder as well.

I forgot to mention one that would be cool too. An option to run some specific binder process(es) in the background without appearing on the monitor or option to put this process on PC startup

Well you can't really hide processes unless you use something like a rootkit, I'm not planning to add startups for each individual file at the moment since it's quite complicated UI-wise to make it good.