public-mirrors/LOLBAS
1
0
Fork 0
mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2024-12-28 15:58:24 +01:00
Code Issues Projects Releases Wiki Activity

Added AWL Bypass to Ssh.yml

Browse Source
This commit is contained in:
akshat pradhan 2021-11-09 08:14:43 +05:30
parent dfc7d40b1f
commit 33a8da933c
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
yml/OSBinaries/Ssh.yml
View File

@ -11,6 +11,13 @@ Commands:
Privileges: User
MitreID: T1202
OperatingSystem: Windows 10 1809, Windows Server 2019
- Command: ssh localhost calc.exe
Description: Executes calc.exe.
Usecase: Performs execution of specified file, can be used to bypass Application Whitelisting.
Category: AWL Bypass
Privileges: User
MitreID: T1202
OperatingSystem: Windows 10 1809, Windows Server 2019
Full_Path:
- Path: c:\windows\system32\OpenSSH\ssh.exe
Detection: