Just sent this zero-day to @msftsecresponse :->pic.twitter.com/wBCeEs619k
-
-
Refer to the list of unsafe (able to run code) files for IE: https://support.microsoft.com/en-us/help/291369 … MSC is listed.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Awesome POC, Will! Do you mind sharing the resource on poisoning msc file? Couldn't seem to find. Thanks heap!
-
Since it's already public, sure. 1) Start with https://github.com/hfiref0x/UACME/blob/master/Source/Kamikaze/Kamikaze.msc … 2) Change the URI inside it to one that does what you want. Easy peasy.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.