Priv Escalation
Exploiting AlwaysInstallElevated.
Detection:
If both commands have the output: AlwaysInstallElevated REG_DWORD 0x1.
We can exploit this by generating a reverse msi that would connect back to us as Administrator.
Then
Last updated