|
|
|
|
|
|
by jabroni_salad
1250 days ago
|
|
|
It should force devs to do that, but at some point the service runner got some smarts put into it and you do not need to quote the path to your service's executable. You can drop your own exe at the substring location and leverage it for persistence or privilege escalation to SYSTEM if that location happened to be writable for non-admins. |
|
|