Jump to content

satyricon11

Quark
  • Content count

    32
  • Joined

  • Last visited

Community Reputation

0 Serf

About satyricon11

  • Rank
    Learner
  1. satyricon11

    audiodg process ownership

    Good to know. Thanks guys
  2. satyricon11

    audiodg process ownership

    Okay thanks guys. Yeah I went in and used msfvenom to add a backdoor to the .exe and to no surprise it didn't work. Would I experience the same outcome if I tampered with any of the .dll files that it uses?
  3. So I am poking around with a VM of Windows 7 and Metasploit. After listing all running processes in meterpreter (as NT AUTHORITY/SYSTEM) I noticed that there was no owner for the audiodg.exe process. However, under the windows task manager on the local machine, I see that the processes is listed as a local service. My questions are: 1) Who owns this process and what privileges does it have? 2) Why doesn't the owner show up when I list all running processes in meterpreter or any custom python script 3) Would this process have ring0 access since I can't kill it or migrate to it as NT AUTHORITY/SYSTEM Based off of the reading I've done, my assumption is that since this .exe deals with drivers / driver signing there is a good possibility of ring0 access if I could migrate/exploit this process. https://answers.microsoft.com/en-us/windows/forum/windows8_1-hardware/windows-audio-device-graph-isolation-audiodgexe/35337ea9-4fd2-4902-b05c-7aedbf78fe9f
  4. satyricon11

    Windows 7 Privilege Escalation

    Thanks I appreciate it!
  5. Hey guys so I'm messing around with a copy of Windows 7, Metasploit, and the python programming language. I've noticed that even after I've got NT/AUTHORITY access on a machine, there are still certain things that I cant do. After doing some research I found out that even with superuser access, I may not be in the correct "privilege ring" to accomplish what I want, ie forcing the computer to stop system critical programs, delete certain files, etc. So my thought here is, knowing that the smss.exe process is responsible for starting the kernel and user modes and loads the registry, what if I created a registry key that lets me interact with a custom python script. Would it inherit the same privs/rights as smss.exe? Does anyone have any thoughts or recommendations? BTW, I know that me wanting to delete or stop system critical files is ridiculous. As stated above, this is all in a VM on my PC and is all proof of concept and me goofing off.
  6. satyricon11

    recording packets with python

    I am writing a wifi scanner in python that will scan nearby AP's that wil also identify specific wifi security as a proof-of-concept idea. As of right now I can identify nearby SSID's and write them to a file. However I am stuck on recording data packets from the SSID's because I don't have permission to capture on my specified device. I have tried creating a subprocess method to login as root through terminal but it's still not working. I was wondering if anyone here has overcame this problem
  7. satyricon11

    Blank hard drive issue

    Rybags-I'm using WinToFlash to try to load Windows 7 SP1 onto a flash drive, and I was using Windows Installation Media Creation Tool to try to load Windows 8.1 to another. Which I downloaded from here: http://windows.microsoft.com/en-us/windows-8/create-reset-refresh-media WintoFlash allows me to specify where the Windows .ISO is or an extracted folder and installs to a specified path to a flashdrive. codecreeper-As of right now there are no hidden partitions on the hard drive because D-Ban was ran on it a couple days before and wiped it clean.
  8. satyricon11

    Blank hard drive issue

    I went into diskpart in the windows installer and created a partition and gave it a volume name as well. It shows up as disk C: and volume "New Volume" and the disk is labled healthy and is empty. When I go back and run the actual installer, windows says device drivers are missing. I have searched google and done everything that has been suggested such as restarting the installation, pulling the flash drive out and re inserting it into a different USB port and reinstalling windows onto my flash drive. I have also used differenty types of flash drives because it seems SanDisk doesn't like making bootable flash drives. Laptop is an HP Pavilion Model # 11-n010dx initial OS: Windows 8 no CD/DVD drive. As of right now I'm using WinToFlash to re install windows 7 on one flash drive and I'm using another to try and install windows 8 again using the Windows Installation Media Tool of of the Microsoft website
  9. satyricon11

    Blank hard drive issue

    I have a hard drive that was wiped using a disk wiping utility and I am trying to re install windows on it. However I am stuck trying to assign the disk a volume and letter. I see that the disk is listed as "disk 0" and I've already ran the clean command and converted the disk to MBR. I'm just curious as to how to assign the volume and letter.
  10. satyricon11

    Python

    I am trying to join two active processes into one using Python. In order to do this I've been researching the .join() method in the multiprocessing API. I've done some research and I'm not sure this is what I need in order to accomplish my goal. Does anyone know a better way to go about this?
  11. satyricon11

    I-Pod

    I'm about to look for a compact flash reader. I appreciate it guys!
  12. satyricon11

    I-Pod

    I have an I-Pod 30 gig and it's beyond repair. I want to get the music off of the hard drive, does anyone know how I can do this? PS: When I hook the ipod up to a power source is says "Please wait, very low battery" And I can not put it in disk mode
  13. satyricon11

    file compression question

    oh okay, I understand. So no matter what you do there's not actual way to REALLY compress a 1 byte file
  14. If I tried to compress 1 byte of data with winzip what would be the end result?
  15. satyricon11

    beowulf cluster

    So me and my friend have a couple custom builds and random laptops laying around and got curious and decided to try to set up a beowulf cluster using ubuntu 12.10 server just for the learning curve. We managed to install the OS on the master and one of the slaves but can't seem to get one of our desktops online. We have an old dell desktop that doesn't have a hard drive and we are trying to boot it from LAN. I've looked on the internet and followed all kinds of instructions on how to install a tftp and DHCP server but nothing has worked. Any ideas? Would I be better off trying this on Windows server or stick with ubuntu? PS: I've installed the TFTP server on my master computer, but what do I do from there? I've read that the remote computer needs to have the TFTP client installed but how do I manage that if the computer doesn't have a hdd?
×