Code Execution

T1117: regsvr32T1170: MSHTAT1196: Control Panel ItemExecuting Code as a Control Panel Item through an Exported Cplapplet FunctionCode Execution through Control Panel Add-insT1191: CMSTPT1118: InstallUtilUsing MSBuild to Execute Shellcode in C#T1202: Forfiles Indirect Command ExecutionApplication Whitelisting Bypass with WMIC and XSLPowershell Without Powershell.exePowershell Constrained Language Mode ByPassForcing Iexplore.exe to Load a Malicious DLL via COM AbuseT1216: pubprn.vbs Signed Script Code Execution
PreviousNetNTLMv2 hash stealing using OutlookNextT1117: regsvr32

Last updated

Was this helpful?