UAC Bypass
Windows User Account Control (UAC) allows a program to elevate its privileges to perform a task under administrator-level permissions by prompting the user for confirmation.
Checking permissons
First need to check if you are in a Medium Integrity process is to run the command whoami /priv
and see if all privileges are available.
The image above depicts a medium integrity process, as you can see, it does not have all privileges.
When you start something “As Administrator”, and run whoami /priv, you will find out that there is a lot more.
Exploitation
Consider using UACME, Metasploit Modules or Bypass-UAC
Last updated