Showing 1 - 3 of 3

Files from sailay1996

First Active	2019-09-05
Last Active	2021-01-18

Microsoft Spooler Local Privilege Elevation: Posted Jan 18, 2021; Authored by bwatters-r7, Peleg Hadar, sailay1996, 404death, Tomer Bar | Site metasploit.com; This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds a permanent elevated backdoor.; tags | exploit; advisories | CVE-2020-1337; SHA-256 | 88e1248d5e21e3a00dd23e98ab5d2075610af6a2f071e96ac3de2656c5624198; Download | Favorite | View

Microsoft Windows 10 UAC Protection Bypass Via Windows Store: Posted Sep 6, 2019; Authored by timwr, sailay1996, ACTIVELabs | Site metasploit.com; This Metasploit module exploits a flaw in the WSReset.exe Windows Store Reset Tool. The tool is run with the "autoElevate" property set to true, however it can be moved to a new Windows directory containing a space (C:\Windows \System32\) where, upon execution, it will load our payload dll (propsys.dll).; tags | exploit; systems | windows; SHA-256 | 5772d80c89ffdf34ee4b98d8439e444a0c17923e2cae393bbe2593bcae61ffd4; Download | Favorite | View

Windows 10 UAC Protection Bypass Via Windows Store (WSReset.exe) And Registry: Posted Sep 5, 2019; Authored by bwatters-r7, sailay1996, ACTIVELabs | Site metasploit.com; This Metasploit module exploits a flaw in the WSReset.exe file associated with the Windows Store. This binary has autoelevate privs, and it will run a binary file contained in a low-privilege registry location. By placing a link to the binary in the registry location, WSReset.exe will launch the binary as a privileged user.; tags | exploit, registry; systems | windows; SHA-256 | fd4483c2d11523aa133d98cfbc3d2430e4968d51d316ebccfd038998c7d314e9; Download | Favorite | View