uac – WindowsTechs.com

Pass-the-hash, why do I get a shell with high integrity?

Posted on February 29, 2024 by EEVV

I am testing the security of a Windows Server 2019 machine and have a question about remote access to the machine.
The user on the machine has the permission "SeBackupPrivilege". I can therefore dump the "Administrator"… Continue reading Pass-the-hash, why do I get a shell with high integrity?→

Disabling UAC (Windows 10) for Administrator accounts

Posted on November 28, 2023 by IscarioteSXIII

To help improve the user experience on admin workstations, would it be ok to disable the UAC or maybe set it with a more permissive mode?

Continue reading Disabling UAC (Windows 10) for Administrator accounts→

Is it worth it to force UAC to ask for a password?

Posted on September 30, 2023 by JulianGR

I’ve tried to harden my Windows 10 by using an unprivileged account, which I know reduces the attack surface a lot. I’m running Ableton (a music program) which is running after UAC has given admin privileges, and Ableton calls plugins, whi… Continue reading Is it worth it to force UAC to ask for a password?→

Is UAC an overestimated protection measure in Windows? Does Linux do it better?

Posted on August 1, 2023 by Sir Muffington

Windows is an API-based operating system, whereas Linux is file-based. Hence in my opinion, any operating system API security measures alone aren’t effective in Windows. One of such examples would be UAC in my humble opinion.
On the other … Continue reading Is UAC an overestimated protection measure in Windows? Does Linux do it better?→

Why UAC prompt is not showed [closed]

Posted on February 7, 2023 by Bob5421

I want to run mimikatz.exe on different windows computers (same windows version and edition).
Sometimes windows prompts with an UAC box confirmation and sometimes not.
Is there a configuration somewhere for enabling UAC (at user level ?, c… Continue reading Why UAC prompt is not showed [closed]→

Why UAC prompt is not showed [closed]

Posted on February 7, 2023 by Bob5421

Is Windows UAC’s clicking OK authentication as secure as macOS/Linux’s password authentication?

Posted on November 9, 2022 by Damn Vegetables

Windows only show [Yes] or [No] for the same thing as Linux’s sudo. macOS/Linux both require you to type the password. Is the password-less Windows implementation almost as secure as password-requiring macOS/Linux’s impersonations? If so, … Continue reading Is Windows UAC’s clicking OK authentication as secure as macOS/Linux’s password authentication?→

This App can’t be activated when UAC is disabled

Posted on September 10, 2022 by KaranKhanna@TWC

Microsoft introduced an excellent access control feature for its versions of the Windows operating system named User Account Control (UAC). If UAC is disabled, you might not be able to use many programs and websites. Thus, you might encounter the error… Continue reading This App can’t be activated when UAC is disabled→

Is having a local Antivirus and possibly other corporate protection layer enough to safely disable Windows UAC messages? [closed]

Posted on July 10, 2022 by Alexei

Context
I have recently helped a colleague set up her developer machine (Windows 10) and realized that the User Account Control setting is disabled (Never notify). Considering a fairly recent security event and the top management message t… Continue reading Is having a local Antivirus and possibly other corporate protection layer enough to safely disable Windows UAC messages? [closed]→

Why does this Windows process run with High integrity?

Posted on June 5, 2022 by David Alexander

Background
I’m trying to understand more about the Mandatory Integrity Control system in Windows, and have been looking through the background processes that are running at High integrity on my laptop.
I’ve read through all the documentati… Continue reading Why does this Windows process run with High integrity?→