mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-12-22 20:36:12 +00:00
AppLocker rules
This commit is contained in:
parent
71171fa78b
commit
742c7ee3c2
@ -6,6 +6,7 @@
|
|||||||
* [Windows Version and Configuration](#windows-version-and-configuration)
|
* [Windows Version and Configuration](#windows-version-and-configuration)
|
||||||
* [User Enumeration](#user-enumeration)
|
* [User Enumeration](#user-enumeration)
|
||||||
* [Network Enumeration](#network-enumeration)
|
* [Network Enumeration](#network-enumeration)
|
||||||
|
* [AppLocker Enumeration](#applocker-enumeration)
|
||||||
* [EoP - Looting for passwords](#eop---looting-for-passwords)
|
* [EoP - Looting for passwords](#eop---looting-for-passwords)
|
||||||
* [SAM and SYSTEM files](#sam-and-system-files)
|
* [SAM and SYSTEM files](#sam-and-system-files)
|
||||||
* [Search for file contents](#search-for-file-contents)
|
* [Search for file contents](#search-for-file-contents)
|
||||||
@ -218,6 +219,11 @@ reg query HKLM\SYSTEM\CurrentControlSet\Services\SNMP /s
|
|||||||
Get-ChildItem -path HKLM:\SYSTEM\CurrentControlSet\Services\SNMP -Recurse
|
Get-ChildItem -path HKLM:\SYSTEM\CurrentControlSet\Services\SNMP -Recurse
|
||||||
```
|
```
|
||||||
|
|
||||||
|
## AppLocker Enumeration
|
||||||
|
|
||||||
|
- With the GPO
|
||||||
|
- HKLM\SOFTWARE\Policies\Microsoft\Windows\SrpV2 (Keys: Appx, Dll, Exe, Msi and Script).
|
||||||
|
|
||||||
## EoP - Looting for passwords
|
## EoP - Looting for passwords
|
||||||
|
|
||||||
### SAM and SYSTEM files
|
### SAM and SYSTEM files
|
||||||
|
Loading…
Reference in New Issue
Block a user