Bypass restrictions, like Group Policies setup by network administrator, and get to the shell by using MS Paint. This is handy if the command prompt is hidden from a kiosk machine and you have access to MS Paint. Of course, after you get to the shell, you will still need to know what to do with it to "test" stuff.
There is a certain image size with the correct combination of RGB entries that will allow you to get to generate a file which basically fires up the Windows shell. Here we go.
1. Fire up MS Paint.
2. Create a new image. Change the size of the image to, in "Image Properties", to (width) Wide = 6 and (height) Tall = 1' (6x1 pixels)
3. Zoom in to the image, then Edit the colors (see below)
4. You will need to create 4 custom colors to fill up the image 1 pixel at a time, 6 times. Use 1 of the custom colors for each pixel. The color settings for
each pixel is listed below.
(1st pixel)
Red = 10
Green = 0
Blue = 0
(2nd pixel)
Red =13
Green =10
Blue = 13
(3rd pixel)
Red =100
Green =109
Blue = 99
(4th pixel)
Red =120
Green =101
Blue = 46
(5th pixel)
Red =0
Green =0
Blue = 101
(6th pixel)
Red =0
Green =0
Blue = 0
5. Save this as a bitmap file (24-bit Bitmap (*.bmp)) - name it "command.bmp"
6. Rename the "command.bmp" file to "command.bat"
Notable Tools:
mh-nexus.de/en/hxd (for Windows) - you can actually edit the hex and add additional commands after cmd to customize the batch file. Nifty little trick, you just have to remember 6 sets of RBG values. peace out! pentest responsibly!
