Windows Privilege Escalation for Beginners, by Heath Adams

Course level: All Levels

Categories Development
Total Enrolled 0
Last Update February 5, 2022

About Course

Finding and exploiting Windows vulnerabilities and misconfigurations to gain an administrator shell.

Description

This course teaches privilege escalation in Windows, from basics such as how permissions work, to in-depth coverage and demonstrations of actual privilege escalation techniques. The course comes with a full set of slides (150+), and a script which can be used by students to create an intentionally vulnerable Windows 10 configuration to practice their own privilege escalation skills on. This is a 100% privilege escalation course, with absolutely no filler!

Please note that this course is aimed at students currently taking, or planning to take the OSCP, and thus covers more common forms of privilege escalation. Some extra methods are included, and more methods may be added in the future, however this course was not designed to cover every possible (or obscure) method.

What Will I Learn?

Multiple methods for escalating privileges on a Windows system.
In depth explanations of why and how these methods work.
Tools which can help identify potential privilege escalation vulnerabilities on a Windows system.

Topics for this course

54 Lessons

1. Introduction

1. Course Introduction00:00:00

2. Resources and Tips for Success00:00:00

2. Gaining a Foothold

3. Initial Enumeration

4. Exploring Automated Tools

5. Escalation Path Kernel Exploits

6. Escalation Path Passwords and Port Forwarding

7. Escalation Path Windows Subsystem for Linux

8. Impersonation and Potato Attacks

9. Escalation Path getsystem

10. Escalation Path RunAs

11. Additional Labs

12. Escalation Path Registry

13. Escalation Path Executable Files

14. Escalation Path Startup Applications

15. Escalation Path DLL Hijacking

16. Escalation Path Service Permissions (Paths)

17. Escalation Path CVE-2019-1388

18. Capstone Challenge

19. BONUS Section

€39.79

Requirements

A basic understanding of Windows systems
A familiarity with hacking tools such as Kali Linux and metasploit / msfvenom

Windows Privilege Escalation for Beginners, by Heath Adams

About Course

Description

What Will I Learn?

Topics for this course

1. Introduction

1. Course Introduction00:00:00

2. Resources and Tips for Success00:00:00

2. Gaining a Foothold

1. Introduction00:00:00

2. Gaining a Foothold (Box 1)00:00:00

3. Initial Enumeration

1. System Enumeration00:00:00

2. User Enumeration00:00:00

3. Network Enumeration00:00:00

4. Password Hunting00:00:00

5. AV and Firewall Enumeration00:00:00

4. Exploring Automated Tools

1. Introduction00:00:00

2. Exploring Automated Tools00:00:00

5. Escalation Path Kernel Exploits

1. Kernel Exploits Overview00:00:00

2. Escalation with Metasploit00:00:00

3. Manual Escalation00:00:00

6. Escalation Path Passwords and Port Forwarding

1. Overview00:00:00

2. Gaining a Foothold (Box 2)00:00:00

3. Escalation via Stored Passwords00:00:00

7. Escalation Path Windows Subsystem for Linux

1. Overview00:00:00

2. Gaining a Foothold (Box 3)00:00:00

3. Escalation via WSL00:00:00

8. Impersonation and Potato Attacks

1. Token Impersonation Overview00:00:00

2. Impersonation Privileges Overview00:00:00

3. Potato Attacks Overview00:00:00

4. Gaining a Foothold (Box 4)00:00:00

5. Escalaction via a Potato Attack.00:00:00

6. Alternate Data Streams00:00:00

9. Escalation Path getsystem

1. getsystem Overview00:00:00

10. Escalation Path RunAs

1. Overview of RunAs00:00:00

2. Gaining a Foothold (Box 5)00:00:00

11. Additional Labs

1. Overview of TryHackMe Labs00:00:00

12. Escalation Path Registry

1. Overview of Autoruns00:00:00

2. Escalation via Autorun00:00:00

3. AlwaysInstallElevated Overview and Escalation00:00:00

4. Overview of regsvc ACL00:00:00

5. regsvc Escalation00:00:00

13. Escalation Path Executable Files

1. Executable Files Overview00:00:00

2. Escalation via Executable Files00:00:00

14. Escalation Path Startup Applications

1. Startup Applications Overview00:00:00

2. Escalation via Startup Applications00:00:00

15. Escalation Path DLL Hijacking

1. Overview and Escalation via DLL Hijacking00:00:00

16. Escalation Path Service Permissions (Paths)

1. Escalation via Binary Paths00:00:00

2. Escalation via Unquoted Service Paths00:00:00

3. Challenge Overview00:00:00

4. Gaining a Foothold (Box 7)00:00:00

5. Escalation via Unquoted Service Paths (Metasploit)00:00:00

6. Manual Challenge Walkthrough00:00:00

17. Escalation Path CVE-2019-1388

1. Overview of CVE-2019-138800:00:00

2. Gaining a Foothold (Box 8)00:00:00

3. Escalation via CVE-2019-138800:00:00

18. Capstone Challenge

1. Overview00:00:00

2. Challenge Walkthrough #100:00:00

3. Challenge Walkthrough #2.00:00:00

4. Challenge Walkthrough #300:00:00

19. BONUS Section

1. BONUS LECTURE Course Discord Channel and Other Author Resources00:00:00

Login

Requirements