rautamiekka
commented
2 years ago Please change the language to English.
Closed archidote closed 2 years ago
rautamiekka
commented
2 years ago Please change the language to English.
archidote
commented
2 years ago @rautamiekka
Hi, I just updated the post with english screenshots.
I apologize for showing you some french powershell errors code
++
clem9669
commented
2 years ago @archidote how sure are you that winPEAS get detected as a virus ?
Because the powershell issue don't mention any virus problem.
carlospolop
commented
2 years ago Hi @archidote, I offer the obfuscated version of Winpeas as a way to offer something more stealth and as an example of how to obfuscate it. I won't be offering a public non-detected version because a public version like that will be undetected only a small period of time. Therefore, if you need an obfuscated version, you will need to create one for yourself at the moment.
Issue description
Hello ! I encoutered an issue when I tried to execute winPEAS on windows 10 pro (domain's PC) as a normal user.
Steps to reproduce the issue
If winpeas, did you use a clean or obfuscated winpeas, and for which architecture?
winPEASany_ofs.exe
Is there any AV / Threat protection in the system?
Yes. windows defender with full option activated.
Please, indicate the OS, the OS version, and the kernel version (build number in case of Windows)
W10 Pro 21h1 Build : 19043.1348
Please, indicate the check that is failing and add a screenshot showing the problem
Additional details / screenshot
when I disbaled the "Real time protection" feature of Windows defender, it's work as I expected.
Ps : Your tool work very well on WS22 Datacenter (build : 20348.288). Amazing work ! thank you so much for this powerfull tool. (and also for the linux version).
++