After attempting to directly access command prompt or PowerShell, dialog boxes are typically a next stage of attack.

There are multiple methods to call a dialog box, the most common being

· Save

· Open

· Print

While Save & Open are commonly used to navigate through a file system, “Print to PDF” provides the same features and may not be restricted

Once it is possible to get to a dialog box, steps can be taken to get to command prompt or PowerShell. This merely requires us to know the location of the target executable

· Command prompt

o C:\Windows\System32\cmd.exe

· PowerShell

o C:\Windows\System32\WindowsPowerShell\v1. 0\powershell.exe

While save, open and print are some of the most commonly available features within software, the steps to get to a dialog box will be steered by the software available and the restrictions on the device.

When working with a browser, it is possible to use the developer tools (typically available via F12) and then use the functionality to trigger a save or open feature.

When these methods are not available, help menus can be incredibly beneficial to explore. This is because help menus typically have links that may open other pages/programs or may provide us with a method to request a traditional dialog box.

When help menus do not provide direct links to dialog boxes, it may be possible to get to inbuilt help menus that can open windows features or direct us to web resources. These may then be able to be leveraged to call tools such as command prompt. (When accessing local files from a web browser it is important to use the file:// URI

‍