Object Manager symbolic links
https://offsec.almond.consulting/mcafee-endpoint-security-arbitrary-file-write-eop.html
McAfee Endpoint Security arbitrary file write Elevation of Privilege (CVE-2019-3582) - Almond Offensive Security Blog
Published on Wed 20 March 2019 by @clavoillotte Product: McAfee Endpoint Security 10.5 & 10.6 Type: Local Privilege Escalation Summary: The permissive access rights on logs and quarantine (files / folders and configuration), and the privileged file manipul
offsec.almond.consulting
https://offsec.almond.consulting/intro-to-file-operation-abuse-on-Windows.html
An introduction to privileged file operation abuse on Windows - Almond Offensive Security Blog
Published on Wed 20 March 2019 by @clavoillotte Edited on Sat 05 October 2019 TL;DR This is a (bit long) introduction on how to abuse file operations performed by privileged processes on Windows for local privilege escalation (user to admin/system), and a
offsec.almond.consulting
https://offsec.almond.consulting/pulse-secure-arbitrary-file-write-eop.html
Pulse Secure client arbitrary file write Elevation of Privilege (CVE-2018-11002) - Almond Offensive Security Blog
Published on Wed 20 March 2019 by @clavoillotte Edited on Tue 04 June 2019 Product: Pulse Secure client for Windows, tested on versions 5.3r3.0 and 9.0r2.0 Type: Local Privilege Escalation Summary: The permissive access rights on log folder, files and shar
offsec.almond.consulting
'ETC' 카테고리의 다른 글
| technique (3) | 2022.07.30 |
|---|---|
| Windbg 명령어 (0) | 2022.06.17 |
| How to privilege escalation from admin to system (0) | 2022.06.08 |
| Kernel Memory Read/Write Primitive using NalDrv.sys (0) | 2022.05.17 |
| WINAPI 정리 (0) | 2022.05.11 |