Skip to content
/ BypassUAC Public

A tool that helps you get system shell without UAC prompt

48 stars 22 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

DoubleLabyrinth/BypassUAC

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
README.md
README.md
 
 
Screenshot.gif
Screenshot.gif
 
 
_tmain.cpp
_tmain.cpp
 
 

Repository files navigation

Bypass UAC

This bypass-UAC method is based on

https://github.com/FuzzySecurity/PowerShell-Suite/blob/master/UAC-TokenMagic.ps1

Generally you must satisfy the following 2 requirements:

  1. There is an already elevated process.

  2. You have PROCESS_QUERY_LIMITED_INFORMATION right to this elevated process.

If your account is under Administrators group, you can open Task Manager to meet those requirements.

How to build

Open Developer Command Prompt and

> cl _tmain.cpp /Fe:GetSystem.exe

How to use

Just run it.

> GetSystem.exe

Screenshot

About

A tool that helps you get system shell without UAC prompt

Resources

Readme
Activity

Stars

48 stars

Watchers

6 watching

Forks

22 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages