research poc
Researchers Bypass ESET NOD32 Detection of Metasploit Meterpreter PayloadNOD32 Meterpreter Bypass (2018)
During a penetration test, researchers bypassed ESET NOD32 antivirus by modifying the Meterpreter DLL source and recompiling, and by embedding encoded shellcode in a custom executable with a filename check to evade signature detection. The technique demonstrates a practical AV evasion method using open-source tool customization.