Windows Privilege Escalation Techniques

Free

IAM

vulnerability-assessment

Visit WebsiteVisit Website

Windows Privilege Escalation Techniques is a list of techniques used to escalate privileges on a Windows system. These techniques are categorized into different types, including stored credentials, DLL injection, and more. Each technique is explained in detail, providing a comprehensive understanding of the methods used to escalate privileges. This list is useful for security professionals and penetration testers to identify and mitigate privilege escalation vulnerabilities. It is also useful for system administrators to understand the techniques used to escalate privileges and to implement countermeasures to prevent privilege escalation attacks.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

Ploy

A platform that helps companies automate the management of their SaaS identities and applications, providing visibility, security, and compliance across the organization's SaaS ecosystem.

Commercial

IAM

AWS IAM Policy Generator for AWS CDK

A NodeJS/Typescript library for generating IAM Policy Actions Statements for AWS CDK with predefined constants and a factory class.

Free

IAM

Dufflebag

A tool for searching through public EBS snapshots for secrets, organized as an Elastic Beanstalk application.

Free

IAM

CloudTracker

CloudTracker helps identify over-privileged IAM users and roles by analyzing CloudTrail logs.

Free

IAM

Aaia

A tool for visualizing AWS IAM and Organizations in a graph format with Neo4j, supporting anomaly detection and custom data processing.

Free

IAM

Ultimate AppLocker Bypass List

Repository documenting common techniques to bypass AppLocker with verified, unverified, and generic bypasses.

Free

IAM

Keyscope

A key and secret validation workflow tool built in Rust, supporting over 30 providers and exporting to JSON or CSV.

Free

IAM

IAMSpy

A library utilizing Z3 prover to analyze AWS IAM policies.

Free

IAM

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free

Security Operations

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free

Blogs and News

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial

Security Operations

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial

Application Security

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial

IAM

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security