LinkedinTwitter

Local Privilege Escalation

Windows - https://github.com/carlospolop/PEASS-ng/tree/master/winPEAS

Linux - https://github.com/carlospolop/PEASS-ng/tree/master/linPEAS

Way to escalate the privilege

  1. AlwaysInstallElevated

  2. SeBackupPrivilege

  3. DnsAdmins to DomainAdmin

  4. SeImpersonatePrivilege

  5. HiveNightmare

  6. Logon Autostart Execution (Registry Run Keys)

  7. Boot Logon Autostart Execution (Startup Folder)

  8. Stored Credentials (Runas)

  9. Weak Registry Permission

  10. Unquoted Service Path

  11. Insecure GUI Application

  12. Weak Service Permissions

  13. Scheduled Task/Job (T1573.005)

  14. Kernel Exploit

  15. SamAccountSpoofing (CVE-2021–42278)

  16. SpoolFool

  17. PrintNightmare

  18. Server Operator Group

PreviousDefense EvasionNextCredential Access

Last updated

Was this helpful?