Site Loader

Services issues using powerup:

PS C:\Users\victim.SECURITY\Downloads\ > Get-ServiceUnquoted –verbose

Get services where the current user can write to its binary path or change arguments to the binary:

Get services where the current user can write to its binary path or change arguments to the binary:

PS C:\Users\victim.SECURITY\Downloads\ > Get-ModifiableServiceFile -Verbose

Get the services whose configuration current user can modify:

PS C:\Users\victim.SECURITY\Downloads\ > Get-ModifiableService –Verbose

Now try this to fnd the path on system:

PS C:\Users\victim.SECURITY\Downloads\PowerUp-master\PowerUp-master> Get-WmiObject -class win32_service |select pathname

Run all the checks:

Use below tools for complete coverage:

PowerUp : (https://github.com/powershellMafia/PowerSploit/tree/master/Privesc)

PS C:\Users\victim.SECURITY\Downloads\PowerUp-master\PowerUp-master> Import-Module .\PowerUp.ps1

PS C:\Users\victim.SECURITY\Downloads\PowerUp-master\PowerUp-master> Invoke-AllChecks

BeRoot : https://github.com/AlessandroZ/BeRoot

PS C:\Users\victim.SECURITY\Downloads\BeRoot> .\beRoot.exe

Privesc : (https://github.com/enjoiz/Privesc/)

PS C:\Users\victim.SECURITY\Downloads\Privesc-master\Privesc-master> Import-Module .\privesc.ps1

PS C:\Users\victim.SECURITY\Downloads\Privesc-master\Privesc-master> Invoke-Privesc

@Saksham Dixit

Post Author: Saksham dixit

Leave a Reply

Your email address will not be published. Required fields are marked *