Posts

Showing posts from September, 2019

Windows 10 ms-settings Opens cmd.

Image
Dear all, specially penetration testers If you were testing some new windows exploit which can help you in UAC bypass or fileless UAC bypass. Once you run the exploit and after sometimes you note that now all settings like network settings display settings and other windows settings are not opening or its opening CMD instead of normal settings, you are at right place to find the solution. Today I was testing a windows 10 UAC bypass exploit and my system's settings stops working and some settings are opening cmd.exe which annoyed my alot, so after alittle research and reading the exploit code, i got the solution. Below are the solution steps. Good news is that you dont need admin rights to do it. Open the registry (win+R, type regedit and hit enter) Next go to this path in registry \HKEY_CURRENT_USER\Software\Classes\ Inside the classes hive you will see ms-setting folder, right click on ms-setting and rename it to ms-settings- or any other name. close the regis

Bitlocker Auto encryption bypass / postponed forever.

Image
Dear reader As you know we update this blog once we get in some kind of trouble in our daily life, So today our organization started Bitlocker implementation on all systems which will encrypt all drives, I have allowed encryption on only C (windows) drive, but soon after that, the bitlocker started giving me popups like encrypt your D,E drive. I have clicked on postponed multiple times but it keeps on appearing after few minutes. Sooooo, if you have faced such issue below is the an awesome trick to bypass it, also you won't find this trick any where else on internet as its completely self learned. So I knew that this Bitlocker is some how communicating to its centralized server for policy updates or may be for some other communication or keys recovery or reports etc, and I knew that server information will be stored in Registry. But the problem was to search for those registry keys and find the server information and edit the host file and assigning the localhost to serv