Showing 1 - 3 of 3

Files from Rob Fuller

Windows Escalate UAC Execute RunAs: Posted Sep 12, 2024; Authored by Rob Fuller, b00stfr3ak | Site metasploit.com; This Metasploit module will attempt to elevate execution level using the ShellExecute undocumented RunAs flag to bypass low UAC settings.; tags | exploit; SHA-256 | 0f7fb4377bf2d6d71431f032c82cbf7fd475135a7e10f5264dc8285bfaa1d4ff; Download | Favorite | View

Regsvr32.exe (.sct) Command Delivery Server: Posted Aug 31, 2024; Authored by Rob Fuller, Casey Smith, Trenton Ivey | Site metasploit.com; This Metasploit module uses the Regsvr32.exe Application Whitelisting Bypass technique as a way to run a command on a target system. The major advantage of this technique is that you can execute a static command on the target system and dynamically and remotely change the command that will actually run (by changing the value of CMD). This is useful when combined with persistence methods (e.g., a recurring scheduled task) or when flexibility is needed through the use of a single command (e.g., as Rubber Ducky payload).; tags | exploit; SHA-256 | b38a0c6bd7238b711d56e09e8d7f960cf22df4c8b1d22e3cb898eff7556125c0; Download | Favorite | View

SingleClick Connect CSRF / XSS / SQL Injection: Posted Sep 15, 2014; Authored by Rob Fuller; SingleClick Connect installs a vulnerable web application, unpassworded MySQL instance, and handles set up of VNC poorly amongst various other issues.; tags | advisory, web; SHA-256 | e3202fce8e302bd9f029650fbff05b5533d1086d2690e0533030aa3c37fd383d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days