Penetration Testing mailing list archives
RE: priviledge escalation techniques
From: BSK <bishan4u () yahoo co uk>
Date: Mon, 24 Jan 2005 08:47:58 +0000 (GMT)
prefetch stores. If you look in the C:\WINDOWS\Prefetch directory you will see all the recently loaded executable files stored in a prefetch format.
well surprisingly there is no Prefetch directory anywhere in my windows 2000 proff. and server
If you open a dos prompt and (make a backup of the sethc.exe file warning here) copy cmd.exe to sethc.exe, answering that yes, you do want to overwrite the original, you will see the new sethc.exe in an explorer window with a cmd.exe icon. Now, if you delete that, windows will restore sethc.exe but with a cmd.exe icon (note the file sizes). When done this way, pressing shift 5 times will indeed open a cmd prompt.
Yes, windows replaces the file as u mentioned but still doesn't open anything on 'shift' 5 times :( ___________________________________________________________ ALL-NEW Yahoo! Messenger - all new features - even more fun! http://uk.messenger.yahoo.com
Current thread:
- Re: priviledge escalation techniques, (continued)
- Re: priviledge escalation techniques BSK (Jan 20)
- RE: priviledge escalation techniques Dave Wells (Jan 20)
- RE: priviledge escalation techniques Michael Howard (Jan 20)
- Re: priviledge escalation techniques BSK (Jan 20)
- RE: priviledge escalation techniques Roy Stapleton (Jan 21)
- RE: priviledge escalation techniques Eyal Udassin (Jan 22)
- Re: priviledge escalation techniques Pieter Danhieux (Jan 23)
- Re: priviledge escalation techniques Thor (Jan 23)
- RE: priviledge escalation techniques Eyal Udassin (Jan 23)
- Re: priviledge escalation techniques Thor (Jan 23)
- RE: priviledge escalation techniques Eyal Udassin (Jan 22)
- RE: priviledge escalation techniques BSK (Jan 24)
- Re: priviledge escalation techniques Nicolas RUFF (lists) (Jan 27)