Privilege Escalation

T1134: Primary Access Token ManipulationWindows NamedPipes 101 + Privilege EscalationT1038: DLL HijackingT1108: WebShellsT1183: Image File Execution Options InjectionUnquoted Service PathsPass The Hash: Privilege Escalation with Invoke-WMIExecEnvironment Variable $Path InterceptionWeak Service Permissions
PreviousDetecting Sysmon on the Victim HostNextT1134: Primary Access Token Manipulation

Last updated

Was this helpful?