On all modern versions of Microsoft Windows, Microsoft has included Windows Defender as the native anti-malware protection. There are many home users and organizations that utilize Windows Defender as their preferred anti-malware solution on end devices. As a penetration tester, being undetected during a penetration test is very important as your actions are designed to simulate a real-world attack.
The following PowerShell script will remove all virus definitions from Windows Defender:
"c:\program files\windows defender\mpcmdrun.exe" -RemoveDefinitions -All Set-MpPreference -DisablelOAVProtection $true
The following screenshot shows the output of the preceding script being successfully executed ...