virus.pdf

Now I can send homework to my teacher!!!

What I don't like is that, there is a considerable difference between how we actually get hacked in real life, and how these demonstrations work. When a already downloaded PDF is trying to save another PDF and windows is clearly showing a very necessary warning, it is not how it is done. I am sure there are methods to evade these, but most ethical hackers will say "You are wrong, a lot a people actually fall for this". When someone gets hacked in real life it is a completely different story, especially if they are getting personally targeted. Show how to protect from those, instead of showing what Microsoft has already done something for.

I adore how easily you explain stuff, I am SW engineer for 10 years but new to cybersecurity world and the best thing is that it's not boring for me witch explaining how TCP works. Great work dude!

Hey Loi, are the courses in Udemy and YT membership different? And are they up to date?
The reason I'm asking this is that most of the Ethical Hacking or Penetration Testing courses on Udemy or other platforms are either outdated or purely theoretical.

It will only work in case the target uses adobe reader application for viewing pdf instead of web browser , thats how the vulnerability works :)

great content it is always good to realize even pdf can include malicious code. the only thing i will say about it, you make it look like it is so simple but av and defender will detect that type of attack instantly. we will appreciate you mentioned that in the video and if you can also put the best way to avoid being detected so we can learn more. the video is awesome and your explanation too. thanks

Would it be possible to go into the technical details of the vulnerability used?

The raw attack as shown in video has very slim chances to go, but combining this attack with other vulnerability could be very effective, it is up to your hacking mentality to figure out how could you make use of such attack

you should make 5 or 6 video series teaching on stuff like this so you don't have to explain sudo every time. I would also appreciate the series more because I'm looking for more advanced explanations rather than the light brushes on topics with the full explanation of stuff I already know

Why does it ask you to save and open if it is already saved and opened? That will make users leave the file alone.

Take it to the next level dude . We deserve more than...Thanks

Sir, Loi Lang Yang. You are Aaaammmmmmmaaaaaaazzzzzziiiiiiinnnnngggggg. Hats off to you

Dear viewers, no it's never as easy as this video is, those payloads are easily detected by nearly any AV cause of how frequently they're used so their signature is in every AV solution database sorry to bust the skids bubble 😂

You are my teacher sir, thanks a lot

Is it possible to monitor and decrypt the network traffic of the machine and see the data that's being sent and received over the network?

I guess I need to send my pdf materials tomorrow before the meeting.

Only Problem is the windows defender which blocks the file, means you have to somehow disable the target anti virus with a hotplug attack but for that you need to be at this pc or convince him idk

Nice video, keep up the good work

I have small question. What is shown above do i need network card with monitor mod enable? I meant i wwanna start kalilinux but i dont have enought resources now. So is networkcard with monitor mod enabled is necessary for hacking??

Another good tuts. Sir can you make a tutorial on merging of payloads with files. Like pdf,doc and stuffs like that except APK cuz we know Metasploit already has the -x option to input the payload into an apk

Thank you for making videos on cyber security for us

Does this naturally have persistence or if the user restarts the computer and doesnt open the file again will you lose access?

i "like" this video according to the website...
i also really enjoyes the video, and learned a lot.
who knew you can control a system with these techniques.
the internet is becoming such a complex place.

All PDF files have a backdoor, even if the hacker or user did not add it in. No one knows who is hacking though. But I know the government uses it in their files to find out who is stealing their data. My friend found that out by downloading files from them.

For anyone that didn't work. your device must be very vulnerable (no antivirus firewall , window defender ...) in order to work

this is so far the best one you create !! i like it !! thx !!

Loi when you open a terminal it is opened on its separated plane icon and name But when I open a terminal it is drop downed how I can fix or customize it pleas make a video or replay to me

What if the user didnt click save after double clicking?

can you give more infirmation like what hapens if i close kali linux, is there any chance to open back?, what happens if the victom closes his pc?

How can I hire you, to look at my PC and see if there is Virus, Keylogger, Open Port or Malware on it? How much do you charge per hour?

Please make a dedicated course for Ethical hackers

Can you possibly do a video on images injected with viruses
i think it would be an interesting topic

How about disconnected to internet if the user turn off the wifi and open the files, the virus.pdf still work?

not working ...

One qestion this pdf file is only installed if victim put the url in the browser like you did or i can send them from email from whatsapp??

Mr. Hacker Loi is NOT a bad looking guy. But I got a nice laugh out of "Mr Hacker Loi is very handsome" 😂🤣😂🤣😂
Thanks Loi! I appreciate ya, man!
You forgot to tell us that good hackers never get caught, but if you do don't tell them you know Mr. Hacker Loi! 😁

hello sir, here i have some question,i confused how to use and which one terminal to use at window 11

I’m pretty sure it doesn’t bypass windows defender

If the user closes adobe, does it close the conntection?
How can I fix my computer if I ever get under this attack.

You should also teach how to avoid these types of scam
It would be far far better if you teach it at the end of the video

excellent tutorial. how could a user scan his pc to check for infections like these?

Sir can you plz make a video for maintaining a metasploit session for ever.

that's good for understanding the concept but everybody knows that the the archive gets detected by the win10 firewall

Loi, awesome tutorial sir!

Hello Loi, can you help me with Adobe reader trying to install itself all the time in chrome. How do I track tasks like that and prevent them from reinstalling like a virus?

You missed one thing, this exploit only works with Adobe pdf reader

please can u tell me the program name what u use to write on the screen like a board

First

is windows defender turn off because this is easy or you are using magic msf. please teach me

I always have doubt if the attack would be successful if we sent the server link over internet. Because my doubt is we are sending a locally hosted server link which can't be accessed by anyone outside of local network? Can someone throw some insights

Can msfconsole work on android or i use msfvenom?

Ms. loi can you give me the drive ISO Kali Linux link? The problem is that I downloaded it on the web for a very long time. Thank you very much

First🥇

Hey Loi I was wondering can we use the same payload on an android because i don't see any option right there for the reverse tcp for android in msf framework

Kepp gion brother from region kurdistan❤

if the victim opens in mobile phone, does it work?. or is just work on the computer?

In my metasploit it says started reverse tcp handler on my IP, and that’s all, I can’t find where to go to the file

So how did you get such an old version of Adobe Reader?

Both the hacker and Target system on same network???

After opening the pdf file ..the interpreter is not showing in console

Really good

what you dont explain is how am I supposed to take that file and send it in a email or social media message.

does windows defender or another antivirus can't detect this malware? how can we know that a pdf has an virus in it?

Is it possible to send it as an attachment over email instead of hosting is on the web

great content

so how can you hide that warning that appears when the user opens the pdf file

Hey Loi, could you please help a brother out?
So I used Kali linux several years ago and sort of remember this option that by pressing some keyboard shortcut enabled full screen terminal like interface.
It wasn't black like terminal, more grayish with white text I think.
That was my absolute favourite thing to use but so much happened that I had to focus on other things in life and now can't remember even the name of this function let alone the keyboard shortcut.
If you recognize what I'm talking about please let me know :)
I have already tried googling it, searching it on other engines. No trace what so ever.
Some kind soul mentioned it in a tutorial video and he also mentioned that this function was very oldschool.
Anyways, Thank you if you read all of this I really hope I'll find out how to do that again! :)

Hi Loi! Is it possible to do this with my own custom crafted exe

Why when I open the file in the windows machine it doesn't create the session?

what happen when someone closed the pdf ? is meterpreter session will be ended or not ?

So nice thanks sir

@loilianyang
I am not sure whether you will reply to this message or not but
When I try to send the pdf the Gmail detects the virus and its also unable to download it from the receiver side
Thank you

First viewer. Yayyy

Is it okay if I'm using Kali in Virtual Box?

how you were able to run the file without FW block you? i used your steps and get blocked everytime.. i use VMWARE win11

Hey bro system can easily identify that pdf as a virus

How to view these said suspicious pdf safely on linux?(if say i downloaded it from the internet)

how can we stop that?
I mean.
what if that happened to me for example
what can I do?
and how can I stop it?
and actually, how can I know if that's happening?

Well, It works good locally, but How it works externally over the internet without public IP?? And the mos important question is How we can handle It, how to find If we have been hacked by this payloads

Can Malwarebytes detect if there is exe or what ever attached to pdf?

People found out that apache isn't good to use.

can you make a video on how to disable the security opposing the installation of the malacious software cause windows securith immediately identifies it

Where can i find the sudo msfconsole?

Thank you ..❤..شرح مميز و راءع
Good luck

When I got to open the webside it says "Site Can't be reached'. I aslo tried on other browsers,it also did not work. Can somenone help?

1st comment
Hi bro

Can you please tell us how to not be detected by windows real time protection ??

yo can you show us how to bypass the pop up when you want an app to run as admin

How do i know if someone got a "open door" to my computer and how do i close that door? I received am empty PDF tonight(from a possible free lance client that reached me out in workana), and the person who send me asked to use foxit specifically, so when i tried foxit it asked to run cmd. I instant declined the permission and closed the pdf. But i guess my pc could be compromised already, how do i close that door and keep things safe from here?

How can you access the Victim outside the network?

thank you

What should I do if i want to share pdf to an android phone

Can we do the same thing for android with android payload?

Bro just truned off run time 😂😂😂

How do you show the options in this part: 7:26 ?

Thank you for enlightening us with such vital information 🥹❤️

Thanks for sharing!

was the defender turned on ?

I got this error "Exploit failed : windows/x64/meterpreter/reverse_tcp is not a compatible payload" when try to exploit, what is the solution ?

can i do this on a virtual machine im using the normal ip address in a virtual machine and it isnt working..