Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
Other
3.74k
stars
685
forks
source link
[bug] Remove a dollar sign in UserAccountControlCommand.cs #127
In UserAccountControlCommand.cs, the result string is not printed correctly when dto.ConsentPromptBehaviorAdmin is 0 due to a dollar sign.
So I just removed it and now it looks good now.
before:
0 : 1 - No prompting is a buggy format string.
====== UAC ======
0 : 1 - No prompting
EnableLUA (Is UAC enabled?) : 1
LocalAccountTokenFilterPolicy :
FilterAdministratorToken :
[*] Default Windows settings - Only the RID-500 local admin account can be used for lateral movement.
after:
====== UAC ======
ConsentPromptBehaviorAdmin : 0 - No prompting
EnableLUA (Is UAC enabled?) : 1
LocalAccountTokenFilterPolicy :
FilterAdministratorToken :
[*] Default Windows settings - Only the RID-500 local admin account can be used for lateral movement.
leechristensen
commented
3 months ago
Hello, I identified a tiny bug in Seatbelt.
In
UserAccountControlCommand.cs, the result string is not printed correctly whendto.ConsentPromptBehaviorAdminis 0 due to a dollar sign. So I just removed it and now it looks good now.before:
0 : 1 - No promptingis a buggy format string.after: