Clément Labro
Clément Labro
Hello, Here is the thing with VBA, the length of each line is limited and the length of each procedure is also limited. To work around that, the Python script...
It was not intended to be used as a DLL in the first place. :/ Besides, how am I supposed to help? You tell me that an exception is thrown...
There are many similar triggers. I will probably write a dedicated tool that implements all these triggers. I still need to do some research and potentially write a blog post...
Hi! Did you run a source code review tool or something? :) I am already aware of some of these issues as I intentionally took some shortcuts during the development....
Hello! Thank you for your feedback. :) I don't see how these two things are related. 1. `DefineDosDevice` is invoked to create the symlink in the object manager. 2. A...
Oh, right! :sweat_smile: This explanation makes so much sense and is so simple at the same time. I wonder why I didn't even think about it. I will probably do...
Hello, Thank you for taking the time to report this issue. You are completely right, deny ACEs are ignored by the check. The `Get-ModifiablePath` function is from the original `PowerUp`...
I tried to resolve this issue with commit https://github.com/itm4n/PrivescCheck/commit/b80e9100f2db5568d4dd5338b6805bb342af5c7f. There is now a dedicated and generic `Get-AclModificationRights` cmdlet that can check the DACL of a File/Directory/Registry Key. I implemented the...
Thank you very much for testing and reviewing my solution. I tested only deny ACES, not deny SIDs, hence why I missed this issue, nice catch! You might be right,...
So, I realized that although `AccessCheck` would be the most reliable option, it would also result in an information loss as I would no longer be able to say which...