A toolkit for evasion of conventional defense mechanisms

Abstract

Several newer threats are emerging in the domain of computers, information technologies have evolved by leaving behind traditional perimeters and creating new security systems that try to minimize the impact of viruses, malware, and ransomware on businesses. Currently, information security assets have become the most asset for businesses and individuals. In addition, unauthorized access to the Internet via the weakest link in the security chain, the user creates an open perimeter through which attackers can access confidential enterprise data. To accomplish this, the attackers employ social engineering strategies like coercion to persuade users to download malicious software, which enables them to infect users' PCs and spread throughout the business network. The so-called trojan horses, which are installed on the computer and give the attacker remote access, are used by the attackers to infect websites, or send emails with malicious code. Among these techniques, remote access tools (RAT) are an effective and efficient cyber-attack. This thesis describes the creation of a remote administration software prototype aimed at undermining Windows security to ensure the internal perimeter of the business as it bypasses firewalls and perimeter controls and connects to the internal network. The PyCharm IDE environment with Python language, which offers the necessary tools and access to the Windows libraries and Forms package, is used to create our software prototype.