User Account Control (UAC) – What Penetration Testers Should Know | Strategic Cyber Blog

UAC is User Account Control. Introduced in Windows Vista, UAC is a collection of technologies that make it possible to use Windows without administrator privileges and elevate your rights when needed. UAC has a lot of moving parts and encompasses a lot of things.

This post focuses on Windows Integrity levels and UAC elevation prompts. I will first explain some UAC concepts and then dive into three attacks to get past UAC.

Here's a really good and simple explanation of the horrible feature called UAC. Raphael also talks about how to bypass UAC and how to use Cobalt Strike for this.

This is one of the reason we use Cobalt Strike on the Team.