Using WMIC to find privilege-escalation vulnerabilities

In this recipe, we will understand how an attacker gains an insight of escalating privileges through WMIC. WMIC extends WMI for operation from several command-line interfaces and through batch scripts. WMI stands for Windows Management Instrumentation. WMIC can be used, apart from several other things, to query the patches that are installed on the system. To better understand it provides a list of all the details of the security patches installed during a Windows update or manual patches being put into place. They usually look like (KBxxxxx).

Getting ready

To demonstrate this, we will require a Windows 7 machine with a minimum of two cores. If we are testing it in the VM, we can set the number ...

Get Kali Linux Intrusion and Exploitation Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Kali Linux Intrusion and Exploitation Cookbook by Ishan Girdhar, Dhruv Shah

Using WMIC to find privilege-escalation vulnerabilities

Getting ready

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly