YoVDO

The Rise of Potatoes - Privilege Escalation in Windows Services

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Privilege Escalation Courses Vulnerability Research Courses

Course Description

Overview

Explore advanced privilege escalation techniques in Windows services in this comprehensive conference talk from Hack In The Box Security Conference. Delve into recent methods used to escalate privileges from service accounts, including a new 0day NTLM relay attack. Learn about common scenarios involving compromised web applications and MSSQL servers on Windows systems. Examine Windows Service Hardening (WSH) and its potential vulnerabilities, such as the Rotten/JuicyPotato exploit. Understand the implications of SeImpersonatePrivilege and its classification as a "God privilege" by Microsoft. Discover multiple ways to escalate from SERVICE to SYSTEM privileges, despite Microsoft's stance on this security boundary. Gain insights into the newly discovered RemotePotato0 attack vector, combining privilege escalation with NTLM relaying techniques.

Syllabus

#HITB2021AMS D2T1 - The Rise Of Potatoes: Priv. Esc. In Windows Services - A. Pierini & A. Cocomazzi


Taught by

Hack In The Box Security Conference

Related Courses

Ethical Hacking in 15 Hours - 2023 Edition - Learn to Hack
Cyber Mentor via YouTube
Contextomy - Let's Debug Together
nullcon via YouTube
macOS Security Features Bypasses by Example
nullcon via YouTube
Exploiting Android Messengers with WebRTC
nullcon via YouTube
XNU Heap Exploitation - From Kernel Bug to Kernel Control
nullcon via YouTube