Hello,
I am doing the IT and Cybersecurity Foundations Course and I’m stuck on the challenge exercise of the Windows services. I tried all three to attack the unquoted path but I’m still not getting the flag. if anyone can help me or just show the flag I would appreciate it a lot.
Thank you.
Kindy share a screen shot showing the commands you have tried and the output. This will help us troubleshoot where you may be going wrong.
Hello sorry I took long to respond I was in a job interview.
I solved it thank you.
Well done, good luck, I hope they hire you!
hey, i’m currently stuck with the one more point, can you help me out??
Hey there - it looks like you’ve solved this one, but let me know if that’s not the case!
Hi. Are these the ONLY 2 ways to attack an unquoted service path (C:\Program.exe or the way you redacted in your example), and are they always written verbatim, or can their be different text? For instance, for the **.exe path used in the challenge, is it always **.exe, or can the ** be replaced with different text? I’m a total beginner, so thank you for any knowledge you can impart!
Any time there is a SPACE in a path name to a service, there is a potential attack vector.
Take this example:
As you can see above, the four spaces in the path to the service executable create four potential attack paths because of the way Windows searches for files. Anytime there is a SPACE, Windows will append .exe as shown and search for that file file first.
