Windows Privilege Escalation

System Information

Basic information about the system:

systeminfo
Get-ComputerInfo -Property OS*

Looting via Files

User Enumeration

Get information about the user:

  • Insecure service permissions

  • Unquoted service paths

  • Weak registry permissions

  • Insecure service executables

  • Passwords

  • Overprivileged Users

  • Security Account Manager (SAM)

  • Pass-the-hash

  • Insecure GUI apps

  • Kernel exploits

LogoPrivilege Escalation, Tactic TA0004 - Enterprise | MITRE ATT&CK®

Resources

LogoWindows - Privilege Escalation - Internal All The Things
LogoPrivilege Escalation on Windows (With Examples)DelineaInc
PreviousWelcome to the DWSec NotesNextFundamentals

Last updated

Was this helpful?