Bypass Windows 7 UAC with Backtrack 4 Meterpreter

I have mentioned in earlier posts how important it is to have Windows User Account Control (UAC) running, even at the lowest level, to thwart some hacker attacks. UAC effectively blocks several hacker techniques, especially on Windows 7.

There are a few several-step techniques to disable or bypass UAC, but I figured it would only be a matter of time before an easy to use script was created.

Security programming master David Kennedy recently released the above video on bypassing UAC with Backtrack 4 Meterpreter. Kevin Mitnick needed to bypass UAC for a penetration test, and together with David, came up with this script.

The script was just added to Metasploit today. For more information check out David’s Secmaniac site.

~ by D. Dieterle on January 6, 2011.

2 Responses to “Bypass Windows 7 UAC with Backtrack 4 Meterpreter”

  1. ..good day! would it be possible for you to post the script here?

    • Hi Koeong, thanks for visiting.

      The script is in Backtrack, but it will not run with just “run bypass”, you need to use the full path which I think is Post/windows/escalate/bypassuac. Also, it only seems to work against Windows 7 when the user is logged in as an admin level account. Works great against XP.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: