Logon Script
To create an environment variable for a user, you can go to its HKCU\Environment in the registry. We will use the UserInitMprLogonScript entry to point to our payload so it gets loaded when the user logs in:
After doing this, sign out of your current session and log in again, and you should receive a shell.
Last updated