This repository has been archived by the owner on Jun 2, 2020. It is now read-only.

pedro-javierf / Twicexploit Public archive

Notifications You must be signed in to change notification settings
Fork 9
Star 12

Proof of concept open source implementation of an UAC bypass exploit, based in 2 windows failures.

GPL-3.0 license

12 stars 9 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
Launcher		Launcher
Stage-1		Stage-1
Stage-2		Stage-2
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md

Repository files navigation

Twicexploit

Open source implementation of an UAC bypass exploit, based in 2 windows failures.

Warning

I do not take any responsibility for this tool usage in malicious purposes. It is free, open-source and provided AS-IS for everyone.

System Requeriments

A windows machine (Works with Vista/7/8/8.1/10)
Admin account with UAC set on default settings required.

TODO

Add OS detection in the loader to exploit other dll hijacking entrypoints
Improve loader stability (Dll Injector)
Refactore CopyItem to ensure copy in C:\

Known Isues

explorer.exe can't unload injected stage2 dll. Process reboot is required.
code is pretty old and shouldn't be used anymore

About

Proof of concept open source implementation of an UAC bypass exploit, based in 2 windows failures.

exploit loader uac privilege-escalation

GPL-3.0 license

Report repository

Releases

Packages

No packages published

Languages