Jump to content

cybergeegee

Members
  • Posts

    4
  • Joined

  • Last visited

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

cybergeegee's Achievements

Newbie

Newbie (1/14)

  1. Hello, I'm trying to experiment sending Wake on LAN (WOL) signals to my both my Windows computer to wake them up from my IOS phone. The procedure goes like this: 1) Using the IOS app Workflow, I trigger a script over SSH connection to my WiFi Pineapple TETRA. 2) The script should send a WOL signal to my designated Windows machine. The problem is I don't know how to send WOL with the Pineapple. I know you can install etherwake on a Native Linux, but there is no apt-get in the Pineapple. Eventually I'll combine the automation procedure with IFTTT and Alexa once I get my hands on it. Yes, I know this can be done with an Android or Raspberry Pi, but I don't have them and I don't plan on getting them. I just want to experiment with what I have as of now. Please let me know if you would like me to explain further. I greatly appreciate any thoughts and help from the community.
  2. Yup, that's definitely something that I considered when writing my payload. To compensate for the 'y', I use CONTROL c to simply drop on to the next line so that the following command executes successfully. One thing I noticed on one of my testings was when you get the UAC prompt, sometimes ALT+Y does not work because the prompt is not the selected window (ex. after executing powershell in Admin). I took that into consideration and found a fix by doing the following: GUI TAB DELAY 250 GUI TAB DELAY 250 ALT y Basically it will WIN+TAB twice and somehow it magically selects the UAC prompt window again. It also works with UAC disabled. So far, it only happened to me on one virtual machine running Windows 10. Not sure why it happens, but at least I got a fix for it. Not sure if you or anyone else have encountered the same problem.
  3. I finally realize that the run box trick works on commands where administrator privilege is not necessary (like downloading a batch file with wget and executing it). It all clears up now! Although its still disappointing that you have to go through ALT+Y in order to execute the code. I've been trying to escalate privileges with exploit/windows/local/ask after getting a meterpreter shell on a normal user with UAC enabled. To do so, it needs the user to click Yes on the prompt (which defeats the purpose of being stealthy). That's why I wanted to try changing the UAC level through the ducky in fast and sneaky way. I appreciate the help Enzym3! Thanks for the tip too
  4. I am testing this on target machine Windows 10 (Build 14393). I was able to change the UAC level to 0 with the following on PowerShell: Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\" -Name "ConsentPromptBehaviorAdmin" -Value 0 I am well aware that I can simply go through the trouble of having the ducky do ALT+Y to bypass UAC. However, I want to be able to do this on the run box (WIN+R), if possible. I tried this on the run box but no luck: powershell Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\" -Name "ConsentPromptBehaviorAdmin" -Value 0 Please let me know if anyone has any idea. If you have a quicker or more efficient way of bypassing UAC, feel free to share. Highly appreciated! Thank you, G
×
×
  • Create New...