ForceAdmin is a c# payload builder, creating infinate UAC pop-ups until the user allows the program to be ran. The inputted commands are ran via powershell calling cmd.exe and should be using the batch syntax. Why use? Well some users have UAC set to always show, so UAC bypass techniques are not possible. However – this attack will force them to run as admin. Bypassing these settings.
Screenshots
For building on your own, the following NuGet packages are needed
- ⚡ Create infinite UAC prompts forcing a user to run as admin ⚡ (15)”>
Fody: “Extensible tool for weaving .net assemblies.” - ⚡ Create infinite UAC prompts forcing a user to run as admin ⚡ (16)”>
Costura.Fody“Fody add-in for embedding references as resources.” - ⚡ Create infinite UAC prompts forcing a user to run as admin ⚡ (17)”>
Microsoft.AspNet.WebApi.Client“This package adds support for formatting and content negotiation to System.Net.Http. It includes support for JSON, XML, and form URL encoded data.”
Installation
You can download the latest tarball by clicking here or latest zipball by clicking here.
Download the project:
$ git clone https://github.com/catzsec/ForceAdmin.gitEnter the project folder
$ cd ForceAdminRun ForceAdmin:
$ dotnet runCompile ForceAdmin:
$ dotnet publish -r win-x64 -c Release -o ./publish/⚠ONLY USE FOR EDUCATIONAL PURPOSES⚠
Any questions, errors or solutions, create an Issue in the Issues tab.
Source : KitPloit – PenTest Tools!