Herpaderping process– Evading Windows Defender Security
Evading windows defender security is always an interesting topic for information security professionals. When designing products for securing Windows platforms, […]
Active Directory privilege escalation cheat sheet
Recon # Systeminfo systeminfo hostname # Especially good with hotfix info wmic qfe get Caption,Description,HotFixID,InstalledOn # What users/localgroups are on […]
Windows Privilege Escalation Methods
Windows, compared to other operating systems, holds a market share of over 80% for desktops. It is the de-facto standard […]
Beginner Friendly Step-by-Step Methodology for Windows Privilege Escalation
Here is a beginner-friendly windows privilege escalation methodology. This guide assumes you are starting with a very limited shell like […]
Windows Attack Anatomy
Incorrect permissions in services Find unquoted paths ClearText passwords Pass the hash AlwaysInstallElevated Port Forwarding Vulnerable drivers Kernal Exploits Automated […]
Windows Kernel Exploitation – part 4 | Vulnerabilities
Common Vulnerabilities and Exposure MS08-067 (NetAPI) Check the vulnerability with the following nmap script. nmap -Pn -p445 –open –max-hostgroup 3 –script smb-vuln-ms08-067 <ip_netblock> […]
Windows privilege escalation – part 3 | Kernal-Exploits
EoP – Kernel Exploitation List of exploits kernel : https://github.com/SecWiki/windows-kernel-exploits #Security Bulletin #KB #Description #Operating System MS17-017 [KB4013081] [GDI Palette Objects Local Privilege Escalation] (windows 7/8) […]
Windows Privilege escalation – Part 2 | Enumeration
Windows Version and Configuration systeminfo | findstr /B /C:”OS Name” /C:”OS Version” Extract patchs and updates wmic qfe Architecture wmic […]
Windows Privilege Escalation Guide – part 1 | Tools
Tools : – Here is a list of most comman tools that are used by various pentester to enumrate and […]
Active Directory Overview
Active Directory In this article, we are going to learn about active Directory. Various aspects of Active Directory. Our Main […]