Jump to content

The HIDden PP Attack - A non administrative remote shell


Recommended Posts

In order to provide a PoC that non-administrative access still can result in huge data breaches I present to you

The Hidden PP Attack

A one liner PoSh command that can be executed from a Teensy/Rubber Ducky which leaves the machine open to injections of PoSh code remotely. Quite happy with this project so I thought id drop it here. Ive lurked remotely without an account for some time without contributing, so... here you are

https://simpleinfosec.com/2018/01/09/the-hidden-pp-attack-a-non-administrative-remote-shell-for-data-exfiltration/

https://github.com/secsi/HIDdenPPAttack

 

Link to post
Share on other sites

HCdjBp.gif

What if jim carry finds it. Lol...

 

I llike what you did here. using the tools and services already available To the current user to perform automated tasks.

 

I agree that user level remote access  still can be dangerous.

Edited by i8igmac
Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...