URL File Attacks
- by Vince
-
in Blog
-
Hits: 988
This comes from PayloadAllTheThings on github and it's somewhat obsolete in that it does not seem to work on Windows 10. That being said, older systems are still vulnerable to this attack and it's pretty amazing. The situation is this -- you find an open and writable file share. Our preference is that it's a server share but it can be any share or any folder even. If it's a server share, it's going to rain hashes.
We're going to open Notepad and we'll insert the following: