Introduction into windows privilege escalation
Presented by me at Sectalks BNE0x19 (26th Session)
Created this presentation to force myself to learn a topic which I struggled with.
Unfortunately I did not get the time to incorporate all my ideas before the presentation. However I will be looking at adding to this in the near future.
> Weak File Permissions
> Weak Registry Permissions
> Unquoted Service Paths
> DLL Hijacking
> Finding an exploit
> Compiling exploits
creddump -> https://tools.kali.org/password-attacks/creddump
ICACLS -> Built into windows
Windows-exploit-suggester -> https://github.com/GDSSecurity/Windows-Exploit-Suggester
Mimikatz -> https://github.com/gentilkiwi/mimikatz/
Windows-Priv-Check -> https://github.com/pentestmonkey/windows-privesc-check
Powersploit -> https://github.com/PowerShellMafia/PowerSploit