ForceAdmin is a c# payload builder, creating infinate UAC pop-ups until the user allows the program to be ran. The inputted commands are ran via powershell calling cmd.exe and should be using the batch syntax. Why use? Well some users have UAC set to always show, so UAC bypass techniques are not possible. However – this attack will force them to run as admin. Bypassing these settings.
For building on your own, the following NuGet packages are needed
- ⚡ Create infinite UAC prompts forcing a user to run as admin ⚡ (15)”>
Fody: “Extensible tool for weaving .net assemblies.”
- ⚡ Create infinite UAC prompts forcing a user to run as admin ⚡ (16)”>
Costura.Fody“Fody add-in for embedding references as resources.”
- ⚡ Create infinite UAC prompts forcing a user to run as admin ⚡ (17)”>
Microsoft.AspNet.WebApi.Client“This package adds support for formatting and content negotiation to System.Net.Http. It includes support for JSON, XML, and form URL encoded data.”
Download the project:
$ git clone https://github.com/catzsec/ForceAdmin.git
Enter the project folder
$ cd ForceAdmin
$ dotnet run
$ dotnet publish -r win-x64 -c Release -o ./publish/
Any questions, errors or solutions, create an Issue in the Issues tab.
Source : KitPloit – PenTest Tools!