Jump to content

The HIDden PP Attack - A non administrative remote shell

DaveyBoy

By DaveyBoy
in Hacks & Mods

 Share

Recommended Posts

DaveyBoy Newbie

DaveyBoy

Posted
Posted

In order to provide a PoC that non-administrative access still can result in huge data breaches I present to you

The Hidden PP Attack

A one liner PoSh command that can be executed from a Teensy/Rubber Ducky which leaves the machine open to injections of PoSh code remotely. Quite happy with this project so I thought id drop it here. Ive lurked remotely without an account for some time without contributing, so... here you are

https://simpleinfosec.com/2018/01/09/the-hidden-pp-attack-a-non-administrative-remote-shell-for-data-exfiltration/

https://github.com/secsi/HIDdenPPAttack

 

i8igmac Newbie

i8igmac

Posted
Posted (edited)

HCdjBp.gif

What if jim carry finds it. Lol...

 

I llike what you did here. using the tools and services already available To the current user to perform automated tasks.

 

I agree that user level remote access  still can be dangerous.

Edited by i8igmac

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...