PowerUp.ps1: Get-ModifiableServiceFile should call Get-ModifiablePaths with argument -LiteralPaths

PowerShellMafia / PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

Other

11.77k stars 4.59k forks source link

PowerUp.ps1: Get-ModifiableServiceFile should call Get-ModifiablePaths with argument -LiteralPaths #273

Open felipebbc opened 6 years ago

felipebbc commented 6 years ago

PowerUp.ps1 Line #1510:

From: $ServicePath | Get-ModifiablePath | ForEach-Object {

To: $ServicePath | Get-ModifiablePath -LiteralPaths | ForEach-Object {

felipebbc commented 5 years ago

This bug is still here in "modifidable registry autoruns and configs" E.g.:

Key : HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\RtHDVBg_Dolby Path : "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4 ModifiableFile : @{ModifiablePath=C:\; IdentityReference=NT AUTHORITY\Authenticated Users; Permissions=AppendData/AddSubdirectory}