Skip to content

Latest commit

 

History

History
11 lines (6 loc) · 521 Bytes

README.md

File metadata and controls

11 lines (6 loc) · 521 Bytes

Play Windows TaskScheduler for fun

  • schuac.cs: A new UAC BYPASS Technique using IElevatedFactoryServer COM object(Get SYSTEM dirtectly!)

  • rtask.cs: A new lateral movement Technique using TaskScheduler COM object(Get MS-TSCH based remote powershell)

wp(in chinese):

http://www.zcgonvh.com/post/Advanced_Windows_Task_Scheduler_Playbook-Part.2_from_COM_to_UAC_bypass_and_get_SYSTEM_dirtectly.html

http://www.zcgonvh.com/post/Advanced_Windows_Task_Scheduler_Playbook-Part.3_from_RPC_to_lateral_movement.html