Windows

Windows Privilege Escalation – Token Impersonation

Introduction

Token impersonation is a technique through which a Windows local administrator could steal another user’s security token in order to impersonate and effectively execute commands as that user.

That are certain privileges in Windows that, if enabled, could lead to an attacker escalating privileges to SYSTEM, through various tools that have been designed to specifically exploit this vulnerability.

January 28, 2021 | by Stefano Lanaro | Leave a comment

Guides, Privilege Escalation, Windows

Windows Privilege Escalation – Credentials Harvesting

Introduction

Windows systems and applications often store clear text, encoded or hashed credentials in files, registry keys or in memory.

When gaining initial access to a Windows machine and performing privilege escalation enumeration steps, often passwords can be found through these means and they can be used to further escalate privileges.

January 27, 2021 | by Stefano Lanaro | Leave a comment

Navigation
- Home
- CTF Walkthroughs
- Guides
- Reviews
- Resources
  - Cheat Sheets
  - Checklists
- About
About StefLan Security

I am a penetration tester and cyber security / Linux enthusiast.
Through this blog, I would like to share my passion for penetration testing, hoping that this might be of help for other students and professionals out there. I will be more than glad to exchange ideas with other fellow pentesters and enthusiasts.
Recent Posts
- Certified Red Team Expert (CRTE) Review April 16, 2024
- TryHackMe – Nax Walkthrough April 8, 2024
- Certified Azure Red Team Professional (CARTP) Review December 23, 2023
- A Complete Guide to Hacking GraphQL September 17, 2023
- Offensive Security Experienced Penetration Tester (OSEP) Review January 24, 2023