Empire icon indicating copy to clipboard operation
Empire copied to clipboard

Published 20 hours ago verified publisher icon EmpireProject

Why Windows 7 UAC bypass is not accomplished?

Open agrawalsmart7 opened this issue 6 years ago • 4 comments

Hi, this is my environment.

attacker:- Kali linux(Empire)

Victim:- Windows 7

I got the agent with agent name. Then I renamed the original name to some other.

Next, When I type bypassuac http then it gives me this error or whatever you call.

Tasked <original name> to run Task_CMD_JOB

Agent <original name> tasked with task ID 8

Tasked agent <some other> to run module bypassuac_eventvwr

Now I saw in many blogs that in windows 7 they can easily privilege. Is there any problem with this. Am I missing something?

agrawalsmart7 avatar Feb 03 '19 16:02 agrawalsmart7

Also, this article says that Windows 7 is vulnerable to wscript privilege escalation attack. But still, I fail.

https://www.powershellempire.com/?page_id=380

agrawalsmart7 avatar Feb 03 '19 16:02 agrawalsmart7

Hi, Is your agent administrator ?

:sunflower:

ThePirateWhoSmellsOfSunflowers avatar Feb 04 '19 09:02 ThePirateWhoSmellsOfSunflowers

Hi, Can I close this issue? Its solved now.

agrawalsmart7 avatar Feb 19 '19 09:02 agrawalsmart7

Yes, please do.

On Tue, Feb 19, 2019 at 4:53 AM agrawalsmart7 [email protected] wrote:

Hi, Can I close this issue? Its solved now.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/EmpireProject/Empire/issues/1322#issuecomment-465063771, or mute the thread https://github.com/notifications/unsubscribe-auth/ACFwUEZ0-rL15oPLhgYxK05zvn0oLxo4ks5vO8mGgaJpZM4agLcV .

mr64bit avatar Feb 19 '19 12:02 mr64bit