search

Windows Privilege Escalation

hashtag
System Information

Basic information about the system:

systeminfo
Get-ComputerInfo -Property OS*

hashtag
Looting via Files

hashtag
User Enumeration

Get information about the user:

  • Insecure service permissions

  • Unquoted service paths

  • Weak registry permissions

  • Insecure service executables

  • Passwords

  • Overprivileged Users

  • Security Account Manager (SAM)

  • Pass-the-hash

  • Insecure GUI apps

  • Kernel exploits

LogoPrivilege Escalation, Tactic TA0004 - Enterprise | MITRE ATT&CK®attack.mitre.orgchevron-right

hashtag
Resources

LogoWindows - Privilege Escalation - Internal All The Thingsswisskyrepo.github.iochevron-right
LogoPrivilege Escalation on Windows (With Examples)Delineachevron-right
PreviousWelcome to the DWSec NotesNextFundamentals

Last updated