If you’re a fan of #lolbas type things here’s 5 more from Microsoft, using this method you remove the write barrier that might have stood in your way for some programs that reside in program files system32 etc (old research revisited) https://thecontractor.io/blog/exploading/ the post covers some notable points I’d witnessed and there’s a little screencast at the bottom full of inacurate terminology if you want to hear my excellent bingo-calling voice

RT @nas_bench@twitter.com

We know from LOLBAS that adplus can be used to dump lsass (https://lolbas-project.github.io/lolbas/OtherMSBinaries/Adplus/). But you can also use it to run arbitrary commands and binaries with the "-sc" flag. #lolbin #lolbas

adplus.exe -crash -o [OutputDir] -sc [Command]

🐦🔗: https://twitter.com/nas_bench/status/1534915321856917506