How to run a command with Highest privileges on Windows Machine

Firstly, what is the highest privilege level on a windows box?

It is SYSTEM, The applications run at User Mode, Kernel Mode. When a user invokes an application it runs in User Mode, the application system calls are resolved into native function calls and are executed in Kernel Mode based upon credentials, privileges associated with the User. If user doesn’t have sufficient privileges, some of the native function calls are denied and hence application crashes or halts.

An Attacker always wants be on top and wants to execute at Highest privilege level. So How does a hacker wants to execute an App as SYSTEM?

Eg: Run>regedit.exe

Execute Regedit using AT Comand


This is how an attacker creates a backdoor using Netcat.

Attacker runs the netcat.bat, which creates a netcat relay using at command so that the victim listening on a port specified by attacker so that attacker can connect using Netcat and hence establish a communication channel.


About Uma Mahesh

A Creator/Equilizer. Creator/Equalizers are catalysts for positive, well-organized change. They never settle for the status quo. Instead, they see the opportunity for innovation in the processes that others have long taken for granted. They respect what's already operating, but they can't help but want to improve upon it. Their special combination provides innovation tempered with profound logic. They have incredible discernment. Should their efforts fail, they are unhesitating in accepting responsibility. They don't wallow in self-pity but rather see these missed attempts as critical steps on the path to success.
This entry was posted in Articles, security. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s