White ghost wrote:Majic ps , Prorat , Sub 7 are the best windows trojans majic ps is my recommended you search it in 4shared and download the latest version of it
you can also use them with an cryptor application and then no antivirus can against them
Sub7, no. It's like 10 years old. Majic PS, sounds too much like it includes a hidden trojan. Prorat? It's usable and okay. Same with Poison Ivy.
If you really have to use any of these trojans, you could try Turkojan as well. And then use Thermida to pack it as that would make it a lot harder to disassemble.
You do however, not need to use a "cryptor application". That "no antivrus can against them" is also untrue, as most public "crypters" are usually highly detectable except completely new ones.
Let's say you want something that actually uses new methods, one that does this, is Abyssec's crypter: http://www.abysssec.com/blog/2011/09/25 ... infection/
(And they're even a real company.)
A decent trojan a lot of hacker groups used a while back was Shark:http://forum.intern0t.net/hacking-tools ... 3-1-a.html
(Please note the InterN0T community does not condone unethical hacking.)
And for the sake of this thread, here's a cool proof of concept that has nothing to do with regular RAT's:http://forum.intern0t.net/hacking-tools ... rojan.htmlEdit / Update
Bypassing Anti-Virus Scanners like a Pro:http://forum.intern0t.net/offensive-gui ... nners.html
That paper only shows how to bypass signature based scanners, but play enough with a detected executable file, and you'll eventually end up with a fully undetectable file and that's even WITHOUT encrypting, packing or encoding it.
Remember that simple ncx99.exe backdoor which spawns a netcat process listening on port 99? I made that completely undetectable once, even against heuristic scanners.
Not because I used it for anything, just for the research fun to see how long it would take. (Approximately 1½ evening after work.)