Whitepaper: “UAC Bypass e investigación con la herramienta UAC-A-Mola”
UAC-A-Mola is a framework, designed to investigate, detect, explore and mitigate the weaknesses called UAC bypass. These weaknesses are found in Microsoft Windows operating systems.
UAC-A-Mola allows to automate the detection of a UAC bypass on a Windows 7/8 / 8.1 / 10 machine. UAC-A-Mola permits the execution of different personalized modules that can automate the investigation that searches for UAC bypasses mainly in fileless and DLL Hijacking. The framework allows the inclusion of modules oriented towards the investigation and detection of other type of bypasses. In addition, UAC-A-Mola allows to obtain a defensive vision to mitigate the possible UAC bypasses that operate in the Windows environment. UAC-A-Mola is written in Python and it’s a framework that allows the extention of functionalities through a simple interface and a module creation system.