-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathBypassing UAC
63 lines (38 loc) · 1.32 KB
/
Bypassing UAC
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
Bypassing UAC
Answer the questions below
Click and continue learning!
No answer needed
Task 2 User Account Control (UAC)
Answer the questions below
What is the highest integrity level (IL) available on Windows?
System
What is the IL associated with an administrator's elevated token?
High
What is the full name of the service in charge of dealing with UAC elevation requests?
Application Information Service
Task 3 UAC: GUI based bypasses
Answer the questions below
What flag is returned by running the msconfig exploit?
THM{UAC_HELLO_WORLD}
What flag is returned by running the azman.msc exploit?
THM{GUI_UAC_BYPASSED_AGAIN}
Task 4 UAC: Auto-Elevating Processes
Answer the questions below
What flag is returned by running the fodhelper exploit?
THM{AUTOELEVATE4THEWIN}
Task 5 UAC: Improving the Fodhelper Exploit to Bypass Windows Defender
Answer the questions below
What flag is returned by running the fodhelper-curver exploit?
THM{AV_UAC_BYPASS_4_ALL}
Task 6 UAC: Environment Variable Expansion
Answer the questions below
What flag is returned by running the DiskCleanup exploit?
THM{SCHEDULED_TASKS_AND_ENVIRONMENT_VARS}
Task 7 Automated Exploitation
Answer the questions below
Click and continue learning!
No answer needed
Task 8 Conclusion
Answer the questions below
Click and continue learning!
No answer needed